50 matches found
CVE-2016-10875
The wp-database-backup plugin before 4.3.1 for WordPress has XSS...
CVE-2020-7241
The WP Database Backup plugin through 5.5 for WordPress stores downloads by default locally in the directory wp-content/uploads/db-backup/. This might allow attackers to read ZIP archives by guessing random ID numbers, guessing date strings with a 20200..10..20..30..9 format, guessing UNIX...
CVE-2025-23633
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in khanhtruong WP Database Audit database-audit allows Reflected XSS.This issue affects WP Database Audit: from n/a through = 1.0...
EUVD-2016-1867
Malware in sbrugna...
EUVD-2025-8592
Malicious code in bioql PyPI...
EUVD-2025-8596
Malicious code in bioql PyPI...
EUVD-2025-8191
Malicious code in bioql PyPI...
PT-2025-33367 · WordPress · Wp-Database-Optimizer-Tools
Name of the Vulnerable Software and Affected Versions: WP-Database-Optimizer-Tools versions through 0.2 Description: A Cross-Site Request Forgery CSRF issue exists in WP-Database-Optimizer-Tools, potentially allowing attackers to perform actions on behalf of authenticated users. Recommendations:...
CVE-2019-25224 WP Database Backup < 5.2 - Unauthenticated OS Command Injection
The WP Database Backup plugin for WordPress is vulnerable to OS Command Injection in versions before 5.2 via the mysqldump function. This vulnerability allows unauthenticated attackers to execute arbitrary commands on the host operating system...
CVE-2022-2271
The WP Database Backup WordPress plugin before 5.9 does not escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2019-14949
The wp-database-backup plugin before 5.1.2 for WordPress has XSS...
CVE-2016-10876
The wp-database-backup plugin before 4.3.1 for WordPress has CSRF...
CVE-2025-31473
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in matthewprice1178 WP Database Optimizer wp-database-optimizer allows Stored XSS.This issue affects WP Database Optimizer: from n/a through = 1.2.1.3...
CVE-2025-31474
Cross-Site Request Forgery CSRF vulnerability in matthewprice1178 WP Database Optimizer wp-database-optimizer allows Cross Site Request Forgery.This issue affects WP Database Optimizer: from n/a through = 1.2.1.3...
CVE-2025-31474
Cross-Site Request Forgery CSRF vulnerability in matthewprice1178 WP Database Optimizer wp-database-optimizer allows Cross Site Request Forgery.This issue affects WP Database Optimizer: from n/a through = 1.2.1.3...
CVE-2025-31473
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in matthewprice1178 WP Database Optimizer wp-database-optimizer allows Stored XSS.This issue affects WP Database Optimizer: from n/a through = 1.2.1.3...
CVE-2025-31474
CVE-2025-31474 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin WP Database Optimizer. Affected: WP Database Optimizer ≤ 1.2.1.3 (listed as from n/a through 1.2.1.3). Root cause: CSRF with no privileges required but user interaction needed. Impact: potential unauthoriz...
CVE-2025-31473 WordPress WP Database Optimizer plugin <= 1.2.1.3 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in matthewprice1178 WP Database Optimizer wp-database-optimizer allows Stored XSS.This issue affects WP Database Optimizer: from n/a through = 1.2.1.3...
CVE-2025-31474 WordPress WP Database Optimizer plugin <= 1.2.1.3 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in matthewprice1178 WP Database Optimizer wp-database-optimizer allows Cross Site Request Forgery.This issue affects WP Database Optimizer: from n/a through = 1.2.1.3...
CVE-2025-23633
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in khanhtruong WP Database Audit database-audit allows Reflected XSS.This issue affects WP Database Audit: from n/a through = 1.0...