5 matches found
CVE-2025-59554 WordPress Advanced Ads – Tracking plugin < 3.0.7 - SQL Injection vulnerability
Unauthenticated SQL Injection in Advanced Ads – Tracking 3.0.7 versions...
CVE-2025-11733
Footnotes Made Easy for WordPress is affected by an unauthenticated Stored Cross-Site Scripting vulnerability in versions up to 3.0.7, arising from insufficient input sanitization and output escaping in plugin settings. Wordfence reports patch status as Patched, and related sources indicate upgra...
UBUNTU-CVE-2025-25749
An issue in HotelDruid version 3.0.7 and earlier allows users to set weak passwords due to the lack of enforcement of password strength policies...
CVE-2023-24465
Communication Wi-Fi subsystem within OpenHarmony-v3.1.4 and prior versions, OpenHarmony-v3.0.7 and prior versions has a null pointer reference vulnerability which local attackers can exploit this vulnerability to cause the current application to crash...
SPIP Directory Traversal Vulnerability
SPIP is a free Web-based content publishing system. The system is primarily used for online collaboration. A directory traversal vulnerability exists in SPIP versions 1.9.2-SPIP 3.0.7, which can be exploited by an attacker to steal cookie-based authentication and read arbitrary files, among other...