emlog 安全漏洞

emlog is emlog open source a set of PHP and MySQL based CMS site building system . A security vulnerability exists in emlog version 2.5.7 and 2.5.8. The vulnerability stems from searchcontroller.php not using adslashes after urldecode, which may lead to SQL injection...

WordPress plugin AWeber Forms by Optin Cat 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

PT-2024-33462 · Colorlib · Colorlib Simple Custom Post Order

Name of the Vulnerable Software and Affected Versions: Colorlib Simple Custom Post Order versions 2.5.7 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For...

WordPress Mystique theme <= 2.5.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme Mystique versions = 2.5.7...

CVE-2023-24000

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in GamiPress gamipress allows SQL Injection.This issue affects GamiPress: from n/a through 2.5.7...