160 matches found
EUVD-2014-5831
Malware in sbrugna...
EUVD-2025-13778
Malicious code in bioql PyPI...
CVE-2024-4312
The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.12. This is due to missing or incorrect nonce validation when saving match and team settings. This makes it possible for unauthenticated attacke...
CVE-2025-47594
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
CVE-2025-47594
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
CVE-2025-47594
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
WordPress Soccer Live Scores plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by ch4r0n in WordPress Plugin Soccer Live Scores versions = 1.0.5...
CVE-2025-47594
The CVE CVE-2025-47594 describes a Cross-Site Request Forgery (CSRF) vulnerability in the Soccer Live Scores WordPress plugin (DAEXT Soccer Live Scores), affecting versions up to 1.0.5. The initial description and connected sources confirm the issue is CSRF, but do not provide concrete exploit de...
CVE-2025-47594 WordPress Soccer Live Scores <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
CVE-2025-47594 WordPress Soccer Live Scores <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...
PT-2025-20171 · Unknown · Daext Soccer Live Scores
Name of the Vulnerable Software and Affected Versions: DAEXT Soccer Live Scores versions 1.0.0 through 1.0.5 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This is a type of attack where an...
WordPress plugin Soccer Live Scores 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...
MAL-2024-3879 Malicious code in watch-ireland-vs-france-live-stream-online-soccer (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in watch-ireland-vs-france-live-stream-online-soccer (npm)
--- -= Per source details. Do not edit below this line.=-...
soccer-tournament.us Cross Site Scripting vulnerability OBB-3935674
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
WordPress plugin Soccer Engine 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
CVE-2024-4312 Soccer Engine – Soccer Plugin for WordPress <= 1.12 - Cross-Site Request Forgery
The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.12. This is due to missing or incorrect nonce validation when saving match and team settings. This makes it possible for unauthenticated attacke...
PT-2024-30307 · WordPress · The Soccer Engine
Name of the Vulnerable Software and Affected Versions: The Soccer Engine – Soccer Plugin for WordPress versions up to, and including, 1.12 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation when saving match and team settings. This allows...
WordPress Soccer Engine plugin <= 1.12 - Cross-Site Request Forgery vulnerability
Cross-Site Request Forgery vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin Soccer Engine versions = 1.12...
WordPress Soccer Engine Plugin <= 1.12 is vulnerable to Cross Site Request Forgery (CSRF)
Software Soccer Engine Type Plugin Vulnerable versions = 1.12 Fixed in 1.13 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-4312 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID bea2020faba5 Credits Benedictus Jovan aillesi...