CVE-2026-2306

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to unauthorized database table creation due to missing authorization checks on the createFluentCartTable function in all versions up to, and including, 5.2.6. This makes it possible for authenticated attackers, with...

CVE-2026-6808

The Pricing Tables for WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.1.0. This is due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2026-6808

The Pricing Tables for WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.1.0. This is due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

WordPress plugin Pricing Tables for WP 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

CVE-2025-69351 WordPress Ninja Tables plugin <= 5.2.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Shahjahan Jewel Ninja Tables ninja-tables allows Blind SQL Injection.This issue affects Ninja Tables: from n/a through = 5.2.4...

EUVD-2021-11812

Malware in sbrugna...

EUVD-2017-9710

Malware in sbrugna...

EUVD-2025-19379

Malicious code in bioql PyPI...

EUVD-2024-49444

Malicious code in bioql PyPI...

EUVD-2025-8114

Malicious code in bioql PyPI...

EUVD-2022-49912

Malicious code in bioql PyPI...

EUVD-2024-48245

Malicious code in bioql PyPI...

EUVD-2023-42317

Malicious code in bioql PyPI...

EUVD-2023-29408

Malicious code in bioql PyPI...

CVE-2025-2940

CVE-2025-2940 (Ninja Tables – Easy Data Table Builder for WordPress) is a confirmed SSRF vulnerability present in all versions up to 5.0.18, exploitable via the args[url] parameter. An unauthenticated attacker can make web requests from the vulnerable WordPress instance to arbitrary locations, en...

CVE-2025-2940 Ninja Tables – Easy Data Table Builder <= 5.0.18 - Unauthenticated Server-Side Request Forgery

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.0.18 via the argsurl parameter. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from th...

CVE-2025-2939

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 5.0.18 via deserialization of untrusted input from the argscallback parameter . This makes it possible for unauthenticated attackers to inject a PHP Object...

CVE-2025-2939

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 5.0.18 via deserialization of untrusted input from the argscallback parameter . This makes it possible for unauthenticated attackers to inject a PHP Object...

CVE-2025-2939

The CVE describes a PHP Object Injection in the WordPress plugin Ninja Tables – Easy Data Table Builder (versions up to and including 5.0.18). The vulnerability arises from deserialization of untrusted input via the args[callback] parameter, enabling unauthenticated attackers to inject a PHP Obje...

WordPress Ninja Tables – Easy Data Table Builder plugin <= 5.0.18 - Unauthenticated PHP Object Injection to Limited Remote Code Execution vulnerability

Unauthenticated PHP Object Injection to Limited Remote Code Execution vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Ninja Tables versions = 5.0.18...