Soccer Fans, You’re Being Watched

From anti-drone tech to face recognition, 2026 World Cup stadiums in the US, Canada, and Mexico are subjecting fans to an array of surveillance tech. Here’s what you need to know...

EUVD-2014-5831

Malware in sbrugna...

EUVD-2025-13778

Malicious code in bioql PyPI...

CVE-2024-4312

The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.12. This is due to missing or incorrect nonce validation when saving match and team settings. This makes it possible for unauthenticated attacke...

CVE-2025-47594

Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...

CVE-2025-47594

Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...

CVE-2025-47594

Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...

WordPress Soccer Live Scores plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by ch4r0n in WordPress Plugin Soccer Live Scores versions = 1.0.5...

CVE-2025-47594 WordPress Soccer Live Scores <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...

CVE-2025-47594

The CVE CVE-2025-47594 describes a Cross-Site Request Forgery (CSRF) vulnerability in the Soccer Live Scores WordPress plugin (DAEXT Soccer Live Scores), affecting versions up to 1.0.5. The initial description and connected sources confirm the issue is CSRF, but do not provide concrete exploit de...

CVE-2025-47594 WordPress Soccer Live Scores <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in DAEXT Soccer Live Scores allows Cross Site Request Forgery. This issue affects Soccer Live Scores: from n/a through 1.0.5...

PT-2025-20171 · Unknown · Daext Soccer Live Scores

Name of the Vulnerable Software and Affected Versions: DAEXT Soccer Live Scores versions 1.0.0 through 1.0.5 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This is a type of attack where an...

WordPress plugin Soccer Live Scores 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...

Malicious code in watch-ireland-vs-france-live-stream-online-soccer (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-3879 Malicious code in watch-ireland-vs-france-live-stream-online-soccer (npm)

--- -= Per source details. Do not edit below this line.=-...

soccer-tournament.us Cross Site Scripting vulnerability OBB-3935674

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

WordPress plugin Soccer Engine 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

CVE-2024-4312 Soccer Engine – Soccer Plugin for WordPress <= 1.12 - Cross-Site Request Forgery

The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.12. This is due to missing or incorrect nonce validation when saving match and team settings. This makes it possible for unauthenticated attacke...

PT-2024-30307 · WordPress · The Soccer Engine

Name of the Vulnerable Software and Affected Versions: The Soccer Engine – Soccer Plugin for WordPress versions up to, and including, 1.12 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation when saving match and team settings. This allows...

WordPress Soccer Engine plugin <= 1.12 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin Soccer Engine versions = 1.12...