EUVD-2026-28219

Samsung Print Service Plugin for Android is potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities...

CVE-2026-3291 Samsung Print Service Plugin – Potential Information Disclosure

Samsung Print Service Plugin for Android is potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities...

CVE-2026-22358

Server-Side Request Forgery SSRF vulnerability in SmartDataSoft Electrician - Electrical Service WordPress electrician allows Server Side Request Forgery.This issue affects Electrician - Electrical Service WordPress: from n/a through = 5.6...

CVE-2025-12061

The TAX SERVICE Electronic HDM WordPress plugin before 1.2.1 does not authorization and CSRF checks in an AJAX action, allowing unauthenticated users to import and execute arbitrary SQL statements...

EUVD-2025-199709

The TAX SERVICE Electronic HDM WordPress plugin before 1.2.1 does not authorization and CSRF checks in an AJAX action, allowing unauthenticated users to import and execute arbitrary SQL statements...

CVE-2025-62913 WordPress Opal Service plugin <= 1.9.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpopal Opal Service opal-service allows Stored XSS.This issue affects Opal Service: from n/a through = 1.9.1...

CVE-2025-62913 WordPress Opal Service plugin <= 1.9.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpopal Opal Service opal-service allows Stored XSS.This issue affects Opal Service: from n/a through = 1.9.1...

CVE-2025-62913

CVE-2025-62913 refers to a stored XSS in the WordPress Opal Service (opal-service) plugin, attributed to “Improper Neutralization of Input During Web Page Generation.” Red Hat, NVD, and PatchStack entries consistently describe the vulnerability as affecting Opal Service versions from n/a through ...

WordPress Opal Service plugin <= 1.9.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Opal Service versions = 1.9.1...

CVE-2025-47711

There's a flaw in the nbdkit server when handling responses from its plugins regarding the status of data blocks. If a client makes a specific request for a very large data range, and a plugin responds with an even larger single block, the nbdkit server can encounter a critical internal error,...

CVE-2020-2168

Jenkins Azure Container Service Plugin 1.0.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability...

CVE-2024-55986 WordPress Service plugin <= 1.0.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in tiny13 Service service allows Blind SQL Injection.This issue affects Service: from n/a through = 1.0.4...

CVE-2024-55986 WordPress Service plugin <= 1.0.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in serviceonline Service allows Blind SQL Injection.This issue affects Service: from n/a through 1.0.4...

CVE-2024-55986

CVE-2024-55986 : The Red Hat and ENISA ENISA ENISA-linked entries confirm an SQL Injection in the serviceonline Service. Copied from the CVE description, the issue is an improper neutralization of special elements in SQL commands, enabling blind SQL injection. Affected software is the Service com...

WordPress plugin Service SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

WordPress plugin TAX SERVICE Electronic HDM SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability...

CVE-2023-31019

NVIDIA GPU Display Driver for Windows contains a vulnerability in wksServicePlugin.dll, where the driver implementation does not restrict or incorrectly restricts access from the named pipe server to a connecting client, which may lead to potential impersonation to the client's secure context...

CVE-2022-2987

The Ldap WP Login / Active Directory Integration WordPress plugin before 3.0.2 does not have any authorisation and CSRF checks when updating it's settings which are hooked to the init action, allowing unauthenticated attackers to update them. Attackers could set their own LDAP server to be used t...

Malicious code in lyft-service-plugin-service-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 11cae99f45bda0d06253e5365230657a357f371ef6c198cd92758d6f960e8a55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4437 Malicious code in lyft-service-plugin-service-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 11cae99f45bda0d06253e5365230657a357f371ef6c198cd92758d6f960e8a55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...