CVE-2025-46512

Cross-Site Request Forgery CSRF vulnerability in Shamim Hasan Custom Functions Plugin custom-functions allows Stored XSS.This issue affects Custom Functions Plugin: from n/a through = 1.1...

CVE-2025-23589 WordPress ContentOptin Lite plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NotFound ContentOptin Lite allows Reflected XSS. This issue affects ContentOptin Lite: from n/a through 1.1...

Yap Blog 1.1 - &#039;index.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/28120/info Yap Blog is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...

Creative Software UK Community Portal 1.1 - Discussions.php?forum_id SQL Injection

Creative Software UK Community Portal 1.1 - Discussions.php?forumid SQL Injection source: https://www.securityfocus.com/bid/17890/info Creative Community Portal is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize...

SoftBiz Web Hosting Directory Script 1.1 - browsecats.php?cid SQL Injection

SoftBiz Web Hosting Directory Script 1.1 - browsecats.php?cid SQL Injection source: https://www.securityfocus.com/bid/15561/info Softbiz Web Host Directory Script is prone to multiple SQL injection vulnerabilities. These issues occur because the application fails to properly sanitize user-supplie...