3 matches found
EUVD-2025-5896
Malicious code in bioql PyPI...
CVE-2025-6994
The CVE-2025-6994 entry concerns the WordPress Reveal Listing plugin by smartdatasoft. Affected versions: up to and including 3.3. Root cause: the plugin allows users registering new accounts to set their own role via the listing_user_role field, enabling unauthenticated privilege escalation. Imp...
CVE-2025-4334
The CVE-2025-4334 issue affects the WordPress plugin Simple User Registration (versions up to and including 6.3). The root cause is insufficient validation/restrictions on user meta values during registration, enabling an unauthenticated attacker to register with administrator privileges. The vul...