164 matches found
EUVD-2025-15909
Malicious code in bioql PyPI...
EUVD-2023-2094
Malicious code in bioql PyPI...
EUVD-2024-49732
Malicious code in bioql PyPI...
EUVD-2025-15587
Malicious code in bioql PyPI...
EUVD-2023-34195
Malicious code in bioql PyPI...
EUVD-2022-52007
Malicious code in bioql PyPI...
EUVD-2025-15390
Malicious code in bioql PyPI...
EUVD-2024-54683
Malicious code in bioql PyPI...
EUVD-2025-15575
Malicious code in bioql PyPI...
EUVD-2025-15846
Malicious code in bioql PyPI...
EUVD-2024-33989
Malicious code in bioql PyPI...
WordPress plugin Comment Info Detector 跨站请求伪造漏洞
WordPress Comment Info Detector plugin is a WordPress plugin for displaying commenter browser and operating system information, developed by Kyle Baker. The WordPress Comment Info Detector plugin suffers from a cross-site request forgery vulnerability that stems from the options.php file not...
Roblox introduces age checks to use communication features
Roblox is an online platform that allows users to build, play and share online worlds and 3D games. Unfortunately, it’s also a popular platform among predators reaching out to kids and seducing them using game features such as messaging, avatar customization, and role-play. Over the years, the...
WordPress Plugin Build App Online Cross-Site Request Forgery Vulnerability
WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in WordPress plugin Build App Online 1.0.23 and prior...
Code-Projects E-Commerce Site 安全漏洞
E-Commerce Site is an e-commerce site. E-Commerce Site suffers from a cross-site request forgery vulnerability that stems from the WEB application not adequately verifying that a request is coming from a trusted user. No details of the vulnerability are available at this time...
WordPress Bluff Post plugin cross-site request forgery vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in the WordPress Bluff Post plugin that stems from the WEB application not adequately verifying that a request is from a truste...
WordPress Element Pack Pro plugin cross-site request forgery vulnerability
WordPress Element Pack Pro plugin is a WordPress editor plugin extension plugin that is mainly used to enhance and extend the functionality and design capabilities of WordPress websites. The WordPress Element Pack Pro plugin suffers from a cross-site request forgery vulnerability that stems from...
CVE-2022-46365
Apache StreamPark 1.0.0 before 2.0.0 When the user successfully logs in, to modify his profile, the username will be passed to the server-layer as a parameter, but not verified whether the user name is the currently logged user and whether the user is legal, This will allow malicious attackers to...
CVE-2022-4693
The User Verification WordPress plugin before 1.0.94 was affected by an Auth Bypass security vulnerability. To bypass authentication, we only need to know the user’s username. Depending on whose username we know, which can be easily queried because it is usually public data, we may even be given ...
CVE-2022-24286
Acer QuickAccess 2.01.300x before 2.01.3030 and 3.00.30xx before 3.00.3038 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general...