9 matches found
EUVD-2025-24220
Malicious code in bioql PyPI...
CVE-2025-8081
The Elementor plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 3.30.2 via the ImportImages::import function due to insufficient controls on the filename specified. This makes it possible for authenticated attackers, with administrator-level access an...
CVE-2025-8081
The Elementor plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 3.30.2 via the ImportImages::import function due to insufficient controls on the filename specified. This makes it possible for authenticated attackers, with administrator-level access an...
CVE-2025-8081 Elementor <= 3.30.2 - Authenticated (Administrator+) Arbitrary File Read via Image Import
The Elementor plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 3.30.2 via the ImportImages::import function due to insufficient controls on the filename specified. This makes it possible for authenticated attackers, with administrator-level access an...
CVE-2023-39314
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Teplitsa of social technologies Leyka plugin = 3.30.2 versions...
WordPress plugin Leyka cross-site scripting vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress Leyka Plugin <= 3.30.2 is vulnerable to Cross Site Scripting (XSS)
Software Leyka Type Plugin Vulnerable versions = 3.30.2 Fixed in 3.30.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-39314 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 06bb9ec2d315 Credits Phd Required privilege Unauthenticated...
WordPress Leyka Plugin <= 3.30.1 is vulnerable to Cross Site Scripting (XSS)
Software Leyka Type Plugin Vulnerable versions = 3.30.1 Fixed in 3.30.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-33325 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6d835c492683 Credits thiennv Required privileg...
[ASA-201705-21] lib32-nss: arbitrary code execution
Arch Linux Security Advisory ASA-201705-21 ========================================== Severity: Critical Date : 2017-05-29 CVE-ID : CVE-2017-5461 Package : lib32-nss Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-248 Summary ======= The package lib32-nss...