30 matches found
EUVD-2024-37592
Malicious code in bioql PyPI...
EUVD-2024-37591
Malicious code in bioql PyPI...
EUVD-2024-28464
Malicious code in bioql PyPI...
EUVD-2024-28463
Malicious code in bioql PyPI...
CVE-2024-30543
Authorization Bypass Through User-Controlled Key vulnerability in UPQODE Whizz.This issue affects Whizzy: from n/a through 1.1.18...
CVE-2024-30544
Missing Authorization vulnerability in UPQODE Whizzy.This issue affects Whizzy: from n/a through 1.1.18...
CVE-2023-0094
The UpQode Google Maps WordPress plugin through 1.0.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2024-38744
Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing Functionality Not Properly Constrained by ACLs, Stored XSS.This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0...
CVE-2024-38744
Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing Functionality Not Properly Constrained by ACLs, Stored XSS.This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0...
CVE-2024-38743
Access Control vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows . This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0...
CVE-2024-38743
CVE-2024-38743 is a WordPress plugin vulnerability in Plum: Spin Wheel & Email Pop-up (Upqode) affecting versions through 2.0. The connected sources describe a Broken Access Control issue (unauthorized access) in Plum: Spin Wheel & Email Pop-up
CVE-2024-38743 WordPress Plum: Spin Wheel & Email Pop-up plugin <= 2.0 - Broken Access Control vulnerability
Access Control vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows . This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0...
CVE-2024-38744
CVE-2024-38744 (Plum: Spin Wheel & Email Pop-up) is tied to Upqode Plum plugin versions n/a through 2.0, with a Missing Authorization vulnerability that enables access to constrained functionality and stores XSS. Public sources indicate unauthenticated access to restricted features and stored XSS...
PT-2024-28187 · Upqode · Upqode Plum: Spin Wheel & Email Pop-Up
Name of the Vulnerable Software and Affected Versions: Upqode Plum: Spin Wheel & Email Pop-up versions n/a through 2.0 Description: The issue is related to an Access Control vulnerability. It affects the functionality of the software, potentially allowing unauthorized access. Recommendations: For...
PT-2024-28188 · Upqode · Upqode Plum: Spin Wheel & Email Pop-Up
Name of the Vulnerable Software and Affected Versions: Upqode Plum: Spin Wheel & Email Pop-up versions n/a through 2.0 Description: The issue affects the Upqode Plum: Spin Wheel & Email Pop-up plugin, allowing access to functionality not properly constrained by ACLs, and stored XSS...
CVE-2024-30544
Missing Authorization vulnerability in UPQODE Whizzy.This issue affects Whizzy: from n/a through 1.1.18...
CVE-2024-30544
Missing Authorization vulnerability in UPQODE Whizzy.This issue affects Whizzy: from n/a through 1.1.18...
CVE-2024-30544
CVE-2024-30544 is a Missing Authorization (broken access control) vulnerability in UPQODE Whizzy (WordPress plugin). The issue affects Whizzy versions up to 1.1.18 and could allow unauthorized access due to insufficient access-control checks. Public sources in the connected documents identify the...
CVE-2024-30544 WordPress Whizzy plugin <= 1.1.18 - Broken Access Control vulnerability
Missing Authorization vulnerability in UPQODE Whizzy.This issue affects Whizzy: from n/a through 1.1.18...
CVE-2024-30543
Authorization Bypass Through User-Controlled Key vulnerability in UPQODE Whizz.This issue affects Whizzy: from n/a through 1.1.18...