107 matches found
EUVD-2021-0569
Malware in sbrugna...
EUVD-2021-19551
Malware in sbrugna...
EUVD-2025-8342
Malicious code in bioql PyPI...
EUVD-2025-31299
Malicious code in bioql PyPI...
EUVD-2023-29399
Malicious code in bioql PyPI...
CVE-2025-60164
Cross-Site Request Forgery CSRF vulnerability in NewsMAN NewsmanApp newsmanapp allows Stored XSS.This issue affects NewsmanApp: from n/a through = 2.7.7...
CVE-2025-60164 WordPress NewsmanApp plugin <= 2.7.7 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in NewsMAN NewsmanApp newsmanapp allows Stored XSS.This issue affects NewsmanApp: from n/a through = 2.7.7...
CVE-2025-60099 WordPress Embed Any Document Plugin <= 2.7.7 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in awsm.in Embed Any Document embed-any-document allows Stored XSS.This issue affects Embed Any Document: from n/a through = 2.7.7...
CVE-2025-60099 WordPress Embed Any Document Plugin <= 2.7.7 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in awsm.in Embed Any Document embed-any-document allows Stored XSS.This issue affects Embed Any Document: from n/a through = 2.7.7...
PT-2025-39546
Name of the Vulnerable Software and Affected Versions Embed Any Document versions through 2.7.7 Description The software contains a flaw due to improper neutralization of input during web page generation, leading to a Cross-site Scripting XSS condition. This allows for Stored XSS attacks. The...
CVE-2025-53983
Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetElements For Elementor jet-elements allows Retrieve Embedded Sensitive Data.This issue affects JetElements For Elementor: from n/a through = 2.7.7...
CVE-2025-53983
CVE-2025-53983 affects JetElements for Elementor (Crocoblock JetElements) with versions up to and including 2.7.7. The issue is described as an insertion of sensitive information into sent data, enabling retrieval of embedded sensitive data. The public materials indicate a data-exposure vulnerabi...
PT-2025-33990 · WordPress · Crocoblock Jetelements For Elementor
Name of the Vulnerable Software and Affected Versions: Crocoblock JetElements For Elementor versions n/a through 2.7.7 Description: A flaw exists in Crocoblock JetElements For Elementor that allows the retrieval of embedded sensitive data due to the insertion of sensitive information into sent...
Crocoblock JetElements For Elementor 安全漏洞
Crocoblock JetElements For Elementor is a design plugin from Crocoblock USA. A security vulnerability exists in Crocoblock JetElements For Elementor version 2.7.7 and prior versions, which stems from the insertion of sensitive information into the sent data, which could result in the retrieval of...
PT-2025-29732 · Crocoblock +1 · Jetelements For Elementor +1
Name of the Vulnerable Software and Affected Versions: Crocoblock JetElements For Elementor versions through 2.7.7 Description: The software contains a cross-site scripting XSS issue due to improper neutralization of input during web page generation. This allows for stored XSS attacks...
WordPress plugin JetElements For Elementor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2025-49976 WordPress WANotifier plugin <= 2.7.12 - Broken Access Control vulnerability
Missing Authorization vulnerability in WANotifier Notifier notifier allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Notifier: from n/a through = 2.7.12...
CVE-2024-10143
The MB Custom Post Types & Custom Taxonomies WordPress plugin before 2.7.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in...
CVE-2025-3453
The Password Protected – Password Protect your WordPress Site, Pages, & WooCommerce Products – Restrict Content, Protect WooCommerce Category and more plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.7 via the 'passwordprotectedcookie'...
WordPress plugin Password Protected 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...