EUVD-2024-52425

Malicious code in bioql PyPI...

CVE-2025-46250

CVE-2025-46250 affects the WordPress plugin VForm (versions up to 3.1.14). The flaw is an improper input neutralization during web page generation, resulting in a Stored Cross‑Site Scripting (XSS) vulnerability. Impact: injected scripts could execute in other users’ browsers when a page containin...

CVE-2025-46250 WordPress VForm plugin <= 3.1.14 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vikas Ratudi VPSUForm v-form allows Stored XSS.This issue affects VPSUForm: from n/a through = 3.1.14...

PT-2025-14391 · Vform · Vform

Name of the Vulnerable Software and Affected Versions: VForm versions 3.1.9 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. Recommendations: For versions 3.1.9 and earlier,...

CVE-2025-24604 WordPress VForm plugin <= 3.0.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in Vikas Ratudi VPSUForm v-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VPSUForm: from n/a through = 3.0.5...