EUVD-2025-19993

Malicious code in bioql PyPI...

EUVD-2025-19385

Malicious code in bioql PyPI...

WordPress VG WORT METIS Authorization Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. An authorization issue vulnerability exists in WordPress VG WORT METIS, which can be exploited by attackers to take over the accounts of other web application users...

CVE-2025-50039

Missing Authorization vulnerability in vgwort VG WORT METIS vgw-metis allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VG WORT METIS: from n/a through = 2.0.1...

CVE-2025-50039

Missing Authorization vulnerability in vgwort VG WORT METIS vgw-metis allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VG WORT METIS: from n/a through = 2.0.1...

CVE-2025-50039

CVE-2025-50039 affects the WordPress VG WORT METIS plugin. Multiple connected sources consistently describe a Missing Authorization vulnerability leading to Broken Access Control in VG WORT METIS versions n/a through 2.0.0 (and, in Patchstack,

CVE-2025-50039 WordPress VG WORT METIS plugin <= 2.0.1 - Broken Access Control Vulnerability

Missing Authorization vulnerability in vgwort VG WORT METIS vgw-metis allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VG WORT METIS: from n/a through = 2.0.1...

CVE-2025-50039 WordPress VG WORT METIS plugin <= 2.0.1 - Broken Access Control Vulnerability

Missing Authorization vulnerability in vgwort VG WORT METIS vgw-metis allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VG WORT METIS: from n/a through = 2.0.1...

WordPress plugin VG WORT METIS 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. An authorization issue vulnerability exists in WordPress VG WORT METIS, which can be exploited by attackers to take over the accounts of other web application users...

PT-2025-27931 · Vg Wort · Vg Wort Metis

Name of the Vulnerable Software and Affected Versions: VG WORT METIS versions n/a through 2.0.0 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For VG WORT METIS versions n/...

CVE-2025-5812

The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenbergsavepost function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...

CVE-2025-5812 VG WORT METIS <= 2.0.0 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update

The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenbergsavepost function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...

CVE-2025-5812

VG WORT METIS for WordPress is affected by CVE-2025-5812: versions up to 2.0.0 contain a missing capability check in gutenberg_save_post(), allowing authenticated users with Subscriber-level access or higher to modify limited post settings. Attack impact is described as unauthorized modification ...

CVE-2025-5812 VG WORT METIS <= 2.0.0 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update

The VG WORT METIS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the gutenbergsavepost function in all versions up to, and including, 2.0.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to...

PT-2025-26920 · WordPress · Vg Wort Metis

Name of the Vulnerable Software and Affected Versions: VG WORT METIS plugin for WordPress versions prior to 2.0.0 Description: The issue is related to unauthorized modification of data due to a missing capability check on the gutenberg save post function. This allows authenticated attackers with...

CVE-2023-24417 WordPress Worthy – VG WORT Integration für WordPress Plugin <= 1.6.5-6497609 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in tiggersWelt.Net Worthy plugin = 1.6.5-6497609 versions...

WordPress Worthy – VG WORT Integration für WordPress Plugin <= 1.6.5-6497609 is vulnerable to Cross Site Request Forgery (CSRF)

Software Worthy – VG WORT Integration für WordPress Type Plugin Vulnerable versions = 1.6.5-6497609 Fixed in 1.7.0-0cde1c2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-24417 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PS...