CVE-2025-69335

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Team Showcase team-showcase allows Stored XSS.This issue affects Team Showcase: from n/a through = 2.9...

CVE-2025-69335

CVE-2025-69335 corresponds to a Stored XSS (Improper Neutralization of Input During Web Page Generation) in the Team Showcase plugin for WordPress (Themepoints). The affected plugin is Team Showcase (team-showcase) and is vulnerable up to version 2.9; exploitation is authenticated (Contributor+)....

WordPress plugin Team Showcase 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

CVE-2025-12456 Centangle Team Showcase <= 1.0.0 - Cross-Site Request Forgery To Plugin's Settings Modification And Stored Cross-Site Scripting

The Centangle-Team plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to modify plugin's settings via a forged reques...

EUVD-2024-40784

Malicious code in bioql PyPI...

EUVD-2024-40213

Malicious code in bioql PyPI...

EUVD-2025-19985

Malicious code in bioql PyPI...

EUVD-2025-17287

Malicious code in bioql PyPI...

EUVD-2025-17286

Malicious code in bioql PyPI...

CVE-2025-49247

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cmoreira Team Showcase team-showcase-cm allows DOM-Based XSS.This issue affects Team Showcase: from n/a through 25.05.13...

CVE-2025-49247

CVE-2025-49247 : WordPress Team Showcase plugin (team-showcase-cm) contains a Reflected Cross-Site Scripting (XSS) vulnerability in versions prior to 25.05.13. Public records indicate the issue arises from insufficient input handling during page generation, enabling injected script via reflected ...

CVE-2025-49247 WordPress Team Showcase plugin < 25.05.13 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cmoreira Team Showcase team-showcase-cm allows DOM-Based XSS.This issue affects Team Showcase: from n/a through 25.05.13...

CVE-2025-49250

Improper Control of Generation of Code 'Code Injection' vulnerability in cmoreira Team Showcase team-showcase-cm allows Code Injection.This issue affects Team Showcase: from n/a through 25.05.13...

CVE-2025-49248

Missing Authorization vulnerability in cmoreira Team Showcase team-showcase-cm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team Showcase: from n/a through 25.05.13...

CVE-2025-49248

Missing Authorization vulnerability in cmoreira Team Showcase team-showcase-cm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team Showcase: from n/a through 25.05.13...

CVE-2025-49250

Improper Control of Generation of Code 'Code Injection' vulnerability in cmoreira Team Showcase team-showcase-cm allows Code Injection.This issue affects Team Showcase: from n/a through 25.05.13...

CVE-2025-49250

CVE-2025-49250 affects the WordPress plugin Team Showcase . The connected Wordfence entry shows an Authenticated Arbitrary Shortcode Execution vulnerability in Team Showcase ("Team Showcase

CVE-2025-49250 WordPress Team Showcase plugin < 25.05.13 - Arbitrary Shortcode Execution vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in cmoreira Team Showcase team-showcase-cm allows Code Injection.This issue affects Team Showcase: from n/a through 25.05.13...

CVE-2025-49248 WordPress Team Showcase plugin < 25.05.13 - Broken Access Control Vulnerability

Missing Authorization vulnerability in cmoreira Team Showcase team-showcase-cm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team Showcase: from n/a through 25.05.13...

CVE-2024-43321

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PickPlugins Team Showcase allows Stored XSS.This issue affects Team Showcase: from n/a through 1.22.23...