28 matches found
CVE-2025-12373
The Torod – The smart shipping and delivery portal for e-shops and retailers plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9. This is due to missing or incorrect nonce validation on the savesettings function. This makes it possible for...
CVE-2025-12373
The Torod – The smart shipping and delivery portal for e-shops and retailers plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9. This is due to missing or incorrect nonce validation on the savesettings function. This makes it possible for...
EUVD-2025-201360
The Torod – The smart shipping and delivery portal for e-shops and retailers plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9. This is due to missing or incorrect nonce validation on the savesettings function. This makes it possible for...
CVE-2025-12373
CVE-2025-12373 : Torod WordPress plugin (≤1.9) is vulnerable to Cross-Site Request Forgery due to missing/incorrect nonce validation in the save_settings function, allowing unauthenticated attackers to trick an admin into altering plugin settings via forged requests.
CVE-2025-12373 Torod – The smart shipping and delivery portal for e-shops and retailers <= 1.9 - Cross-Site Request Forgery To Plugin's Settings Modification
The Torod – The smart shipping and delivery portal for e-shops and retailers plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9. This is due to missing or incorrect nonce validation on the savesettings function. This makes it possible for...
CVE-2025-12373 Torod – The smart shipping and delivery portal for e-shops and retailers <= 1.9 - Cross-Site Request Forgery To Plugin's Settings Modification
The Torod – The smart shipping and delivery portal for e-shops and retailers plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9. This is due to missing or incorrect nonce validation on the savesettings function. This makes it possible for...
WordPress plugin Torod – The smart shipping and delivery portal for e-shops and retailers 跨站请求伪造漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based...
PT-2025-49227
The Torod – The smart shipping and delivery portal for e-shops and retailers plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9. This is due to missing or incorrect nonce validation on the save settings function. This makes it possible for...
WordPress Torod plugin <= 1.9 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Torod versions = 1.9...
EUVD-2024-52895
Malicious code in bioql PyPI...
EUVD-2025-21607
Malicious code in bioql PyPI...
WordPress Torod SQL Injection Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. WordPress Torod suffers from a SQL injection vulnerability that stems from improper handling of special elements of SQL commands, which can be exploited by an attacker to...
CVE-2025-30936
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Torod Company for Information Technology Torod torod allows SQL Injection.This issue affects Torod: from n/a through = 2.1...
CVE-2025-30936
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Torod Company for Information Technology Torod torod allows SQL Injection.This issue affects Torod: from n/a through = 2.1...
CVE-2025-30936
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Torod Company for Information Technology Torod torod allows SQL Injection.This issue affects Torod: from n/a through = 2.1...
CVE-2025-30936
CVE-2025-30936 is a SQL injection vulnerability in the WordPress Torod plugin. Affected: Torod
CVE-2025-30936 WordPress Torod plugin <= 2.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Torod Company for Information Technology Torod torod allows SQL Injection.This issue affects Torod: from n/a through = 2.1...
CVE-2025-30936 WordPress Torod plugin <= 2.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Torod Company for Information Technology Torod torod allows SQL Injection.This issue affects Torod: from n/a through = 2.1...
WordPress plugin Torod SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. WordPress Torod suffers from a SQL injection vulnerability that stems from improper handling of special elements of SQL commands, which can be exploited by an attacker to...
PT-2025-29785 · Torod · Torod
Name of the Vulnerable Software and Affected Versions: Torod versions n/a through 1.9 Description: Torod is susceptible to a SQL injection issue. The vulnerability stems from improper neutralization of special elements within SQL commands. Recommendations: Update Torod to a version later than 1.9...