Astra Linux - уязвимость в php7.3, php8.1

In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, and 8.3. before 8.3.14, a hostile MySQL server can cause the client to disclose the contents of its heap, which contains data from other SQL requests, as well as possibly other data belonging to different users on the same server...

CVE-2025-31413

CVE-2025-31413 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin family Element Pack Elementor Addons. Affected component: Element Pack Addons for Elementor (bdthemes-element-pack-lite) with versions up to and including 8.3.13. Root cause: CSRF exposure allows an...

CVE-2025-31413 WordPress Element Pack Elementor Addons plugin <= 8.3.13 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in bdthemes Element Pack Elementor Addons bdthemes-element-pack-lite allows Cross Site Request Forgery.This issue affects Element Pack Elementor Addons: from n/a through = 8.3.13...

WordPress plugin bdthemes-element-pack-lite has a cross-site request forgeing vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. The WordPre...