145 matches found
MAL-2026-6715 Malicious code in svgcraft-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3863ea8f67c7365031b5ffb43aaa2721062669b49be8157e1dd32ce19dce511f src/index.cjs exports getPlugin, which returns a function that performs an HTTPS GET to a hardcoded URL 'https://api.avax-test.dev/ext/bc/C/rpc' with...
CVE-2026-50887
A Server-Side Request Forgery SSRF in the automatic short URL title resolution component of shlink v5.0.1 allows attackers to scan internal resources via supplying a crafted longUrl...
CVE-2023-45058
Cross-Site Request Forgery CSRF vulnerability in KaizenCoders Short URL plugin = 1.6.8 versions...
EUVD-2010-1093
Malware in sbrugna...
EUVD-2010-1092
Malware in sbrugna...
EUVD-2009-4691
Malware in sbrugna...
EUVD-2009-2636
Malware in sbrugna...
EUVD-2024-29959
Malicious code in bioql PyPI...
EUVD-2023-23836
Malicious code in bioql PyPI...
EUVD-2023-51357
Malicious code in bioql PyPI...
EUVD-2023-49379
Malicious code in bioql PyPI...
EUVD-2024-46605
Malicious code in bioql PyPI...
EUVD-2022-49641
Malicious code in bioql PyPI...
CVE-2025-55420
creationtimestamp| type| source ---|---|--- 2025-08-21 18:43:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwwlw7fktl2a...
CVE-2023-2921
The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...
CVE-2023-2921
The CVE-2023-2921 entry concerns the WordPress Short URL plugin (versions ≤ 1.6.8). A parameter is not properly sanitised/escaped before its use in an SQL statement, enabling SQL injection. Impact is stated as exploitable by users with low privileges (e.g., subscribers). Affected component is the...
CVE-2023-2921 Short URL <= 1.6.8 - Subscriber+ SQLi
The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...
CVE-2023-2921 Short URL <= 1.6.8 - Subscriber+ SQLi
The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...
PT-2025-24017 · WordPress · Short Url Wordpress Plugin
Name of the Vulnerable Software and Affected Versions: Short URL WordPress plugin versions 1.6.8 and earlier Description: The issue is related to a SQL injection problem. The Short URL WordPress plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading t...
WordPress plugin Short URL 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...