170 matches found
WordPress plugin HealthHub 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
CVE-2025-9218
The rtMedia for WordPress, BuddyPress and bbPress plugin for WordPress is vulnerable to to Information Disclosure due to missing authorization in the handlerestpredispatch function when the Godam plugin is active, in versions 4.7.0 to 4.7.3. This makes it possible for unauthenticated attackers to...
CVE-2025-13896 Social Feed Gallery Portfolio <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'id' Shortcode Attribute
The Social Feed Gallery Portfolio plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter of the igp-wp shortcode in all versions up to, and including, 1.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...
PT-2025-47288
Name of the Vulnerable Software and Affected Versions Checkout Files Upload for WooCommerce plugin for WordPress versions up to and including 2.2.1 Description The plugin is susceptible to Stored Cross-Site Scripting through file uploads. Insufficient input sanitization and output escaping allow...
CVE-2025-12090
The Employee Spotlight – Team Member Showcase & Meet the Team Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Social URLs in all versions up to, and including, 5.1.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...
CVE-2025-11817 Simple Tableau Viz <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
The Simple Tableau Viz plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tableau' shortcode in all versions up to, and including, 2.0. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
WordPress Plugin DELUCKS SEO 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
EUVD-2014-4478
Malware in sbrugna...
EUVD-2018-4502
Malware in sbrugna...
EUVD-2025-13295
Malicious code in bioql PyPI...
EUVD-2024-29181
Malicious code in bioql PyPI...
EUVD-2025-21118
Malicious code in bioql PyPI...
EUVD-2025-30723
Malicious code in bioql PyPI...
EUVD-2022-44842
Malicious code in bioql PyPI...
EUVD-2025-15470
Malicious code in bioql PyPI...
EUVD-2024-37894
Malicious code in bioql PyPI...
EUVD-2023-57846
Malicious code in bioql PyPI...
CVE-2025-57902
Cross-Site Request Forgery CSRF vulnerability in Md Taufiqur Rahman RIS Version Switcher - Downgrade or Upgrade WP Versions Easily ris-version-switcher allows Cross Site Request Forgery.This issue affects RIS Version Switcher - Downgrade or Upgrade WP Versions Easily: from n/a through = 1.0...
WordPress <= 6.8.2 Multiple Vulnerabilities (Sep 2025) - Windows
WordPress is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescripti...
CVE-2025-57902
Cross-Site Request Forgery CSRF vulnerability in Md Taufiqur Rahman RIS Version Switcher – Downgrade or Upgrade WP Versions Easily ris-version-switcher allows Cross Site Request Forgery.This issue affects RIS Version Switcher – Downgrade or Upgrade WP Versions Easily: from n/a through = 1.0...