18 matches found
EUVD-2023-29426
Malicious code in bioql PyPI...
EUVD-2023-36763
Malicious code in bioql PyPI...
CVE-2023-46638
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-32520
Missing Authorization vulnerability in Webcodin WCP Contact Form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WCP Contact Form: from n/a through 3.1.0...
CVE-2023-32520
Missing Authorization vulnerability in Webcodin WCP Contact Form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WCP Contact Form: from n/a through 3.1.0...
CVE-2023-32519
Missing Authorization vulnerability in WebCodin WCP Contact Form wcp-contact-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WCP Contact Form: from n/a through = 3.1.0...
CVE-2023-32519
Missing Authorization vulnerability in Webcodin WCP Contact Form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WCP Contact Form: from n/a through 3.1.0...
CVE-2023-32519
CVE-2023-32519 corresponds to a WordPress plugin issue in Webcodin WCP Contact Form (
CVE-2023-46638
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-46638
CVE-2023-46638 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin WCP OpenWeather (Webcodin) for versions up to 2.5.0 . The CVE entry is supported by multiple connected sources, including NVD and Red Hat advisories, all describing CSRF in this plugin family. The Wordfenc...
CVE-2023-25471
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-25471 WordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-22703
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP Contact Form plugin = 3.1.0 versions...
CVE-2023-22703
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP Contact Form plugin = 3.1.0 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP Contact Form plugin = 3.1.0 versions...
CVE-2023-22703
CVE-2023-22703 concerns the WordPress plugin WCP Contact Form by Webcodin, with a Reflected Cross-Site Scripting (XSS) vulnerability in versions ≤ 3.1.0. The root cause is insufficient sanitisation of the tab parameter, causing unauthenticated, network-exposed but user-initiated (UI: REQUIRED) XS...