30 matches found
EUVD-2025-26953
Malicious code in bioql PyPI...
EUVD-2024-45572
Malicious code in bioql PyPI...
EUVD-2024-40154
Malicious code in bioql PyPI...
EUVD-2022-24901
Malicious code in bioql PyPI...
CVE-2025-58824
Missing Authorization vulnerability in priyanshumittal Shk Corporate shk-corporate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Shk Corporate: from n/a through = 2.4.1.1...
CVE-2025-58824
Missing Authorization vulnerability in priyanshumittal Shk Corporate shk-corporate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Shk Corporate: from n/a through = 2.4.1.1...
PT-2025-36163
Name of the Vulnerable Software and Affected Versions: webriti Shk Corporate versions through 2.4.1.1 Description: The software contains a missing authorization flaw due to incorrectly configured access control security levels. Recommendations: At the moment, there is no information about a newer...
CVE-2022-1612
The Webriti SMTP Mail WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2024-51634
Cross-Site Request Forgery CSRF vulnerability in a.ankit Webriti Custom Login webriti-custom-login-page allows Reflected XSS.This issue affects Webriti Custom Login: from n/a through = 0.3...
CVE-2024-51634
Cross-Site Request Forgery CSRF vulnerability in a.ankit Webriti Custom Login webriti-custom-login-page allows Reflected XSS.This issue affects Webriti Custom Login: from n/a through = 0.3...
CVE-2024-51634 WordPress Webriti Custom Login plugin <= 0.3 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in a.ankit Webriti Custom Login webriti-custom-login-page allows Reflected XSS.This issue affects Webriti Custom Login: from n/a through = 0.3...
CVE-2024-51634 WordPress Webriti Custom Login plugin <= 0.3 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in a.ankit Webriti Custom Login webriti-custom-login-page allows Reflected XSS.This issue affects Webriti Custom Login: from n/a through = 0.3...
CVE-2024-51634
CVE-2024-51634 describes a CSRF to Reflected XSS vulnerability in the WordPress plugin Webriti Custom Login (Webriti Shop plugins), affecting versions up to 0.3. The provided documents confirm the issue and its affected range, but do not include a published fix version or concrete remediation ste...
PT-2024-34778 · Webriti · Webriti Custom Login
Name of the Vulnerable Software and Affected Versions: Webriti Custom Login versions 0.3 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that also allows Reflected XSS in the Webriti Custom Login plugin. Recommendations: For versions 0.3 and earlie...
WordPress plugin Webriti Custom Login 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
WordPress Webriti Custom Login plugin <= 0.3 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability
CSRF to Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Webriti Custom Login versions = 0.3...
WordPress Webriti Custom Login Plugin <= 0.3 is vulnerable to Cross Site Request Forgery (CSRF)
Software Webriti Custom Login Type Plugin Vulnerable versions = 0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Request Forgery CSRF CVE CVE-2024-51634 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 2235b9bd113a Credits SOPROBRO Required privilege...
CVE-2024-43262
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in webriti Busiprof allows Stored XSS.This issue affects Busiprof: from n/a through 2.4.8...
CVE-2024-43262 WordPress Busiprof theme <= 2.4.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in webriti Busiprof allows Stored XSS.This issue affects Busiprof: from n/a through 2.4.8...
CVE-2024-43262
CVE-2024-43262 is a stored XSS vulnerability in the Busiprof WordPress theme. The issue arises from improper neutralization of input during web page generation, allowing attacker-supplied input to be stored and later executed in the context of the affected site. Affected versions are Busiprof up ...