20 matches found
EUVD-2026-36270
Fediverse Embeds embeds fediverse posts on WordPress sites. Prior to version 1.5.9, Fediverse Embeds registered the unauthenticated AJAX action wpajaxnoprivftfgetsiteinfo includes/SiteInfo.php that verified a nonce ftf-fediverse-embeds-nonce and then called filegethtml$siteurl on the...
PT-2026-48698
Fediverse Embeds embeds fediverse posts on WordPress sites. Prior to version 1.5.9, Fediverse Embeds registered the unauthenticated AJAX action wp ajax nopriv ftf get site info includes/Site Info.php that verified a nonce ftf-fediverse-embeds-nonce and then called file get html$site url on the...
EUVD-2025-26911
Malicious code in bioql PyPI...
EUVD-2022-43721
Malicious code in bioql PyPI...
CVE-2025-58866
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Rami Yushuvaev Site Info site-info-dashboard-widget allows Retrieve Embedded Sensitive Data.This issue affects Site Info: from n/a through = 1.1...
CVE-2025-58866 WordPress Site Info Plugin <= 1.1 - Sensitive Data Exposure Vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Rami Yushuvaev Site Info site-info-dashboard-widget allows Retrieve Embedded Sensitive Data.This issue affects Site Info: from n/a through = 1.1...
CVE-2025-58866
CVE-2025-58866 affects WordPress Site Info (Site Info Dashboard Widget)
CVE-2025-58866 WordPress Site Info Plugin <= 1.1 - Sensitive Data Exposure Vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Rami Yushuvaev Site Info site-info-dashboard-widget allows Retrieve Embedded Sensitive Data.This issue affects Site Info: from n/a through = 1.1...
WordPress Site Info Plugin <= 1.1 - Sensitive Data Exposure Vulnerability
Sensitive Data Exposure Vulnerability discovered by Bao BlueRock in WordPress Plugin Site Info versions = 1.1...
PT-2025-36205
Name of the Vulnerable Software and Affected Versions: Rami Yushuvaev Site Info versions n/a through 1.1 Description: A vulnerability exists in Rami Yushuvaev Site Info that allows the retrieval of embedded sensitive data, potentially exposing sensitive system information to an unauthorized contr...
WordPress plugin Site Info security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
CVE-2024-30867
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/editvirtualsiteinfo.php...
PT-2024-23645 · Netentsec · Netentsec Ns-Asg
Name of the Vulnerable Software and Affected Versions: netentsec NS-ASG version 6.3 Description: The issue is related to SQL Injection, which can be exploited via the /admin/edit virtual site info.php API endpoint. Recommendations: For netentsec NS-ASG version 6.3, consider restricting access to...
NetentSec NS-ASG 安全漏洞
NetentSec NS-ASG is an application security gateway from China NetentSec. A security vulnerability exists in NetentSec NS-ASG version 6.3, which originates from an SQL injection vulnerability in the /admin/editvirtualsiteinfo.php file...
Odin Secure FTP Expert 7.6.3 - (Site Info) Denial of Service Exploit
Exploit Title: Odin Secure FTP Expert 7.6.3 - 'Site Info' Denial of Service PoC Discovery by: Ivan Marmolejo Vendor Homepage: https://odin-secure-ftp-expert.jaleco.com/ Software Link Download : http://tr.oldversion.com/windows/odin-secure-ftp-expert-7-6-3 Version : Odin Secure FTP Expert 7.6.3...
ChemCMS Cross-Site Scripting Vulnerability
ChemCMS is a chemical-based web content management system CMS based on PHP and MySQL. A cross-site scripting vulnerability exists in ChemCMS version 1.0.6, which can be exploited by remote attackers to insert and execute JavaScript code with the help of the 'Settings-Site Info' field...
quickersite 1.8.5 - Multiple Vulnerabilities
No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: QuickerSite Multiple Vulnerabilities Vendor: www.quickersite.com Vulnerable Version: 1.8.5 Exploit: Available Impact: High Fix: N/A Original Advisory: http://bugreport.ir/index.php?/39 1. Description:...
osCommerce Remote Edit Site Info Vulnerability
Exploit for php platform in category web applications Exploit Title:osCommerce Remote Edit Site Info Vulnerability Date: 10/7/2011 Author: Angel Injection home Page: http://www.club-h.co.cc Email: Angel-InjectionathotmailDotcom Vendor or Software Link: www.oscommerce.com Version: N/A Category::...
QuickerSite Multiple Vulnerabilities
www.BugReport.ir AmnPardaz Security Research Team Title: QuickerSite Multiple Vulnerabilities Vendor: www.quickersite.com Vulnerable Version: 1.8.5 Exploit: Available Impact: High Fix: N/A Original Advisory: http://bugreport.ir/index.php?/39 1. Description: QuickerSite is a Content Management...
QuickerSite 1.8.5 Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ================================================= QuickerSite 1.8.5 Multiple Remote Vulnerabilities ================================================= AmnPardaz Security Research Team Title: QuickerSite Multiple Vulnerabilities Vendor:...