5 matches found
CVE-2025-67531
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in trippleS Turitor turitor allows PHP Local File Inclusion.This issue affects Turitor: from n/a through 1.5.3...
CVE-2021-24442
The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, escape or validate the dateanswers POST parameter before using it in a SQL statement when sending a Poll result, allowing unauthenticated users to perform SQL Injection attacks...
CVE-2022-34295
totd before 1.5.3 does not properly randomize mesg IDs...
WordPress wps-hide-login plugin security bypass vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wps-hide-login is a hide-login plugin used in it. A security vulnerability exists in WordPress wps-hide-login plugin versio...
CVE-2017-18541
The xo-security plugin before 1.5.3 for WordPress has XSS...