EUVD-2025-18927

Malicious code in bioql PyPI...

CVE-2025-50022

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in JK WP-FB-AutoConnect wp-fb-autoconnect allows Stored XSS.This issue affects WP-FB-AutoConnect: from n/a through = 4.6.4...

CVE-2025-50022

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in JK WP-FB-AutoConnect wp-fb-autoconnect allows Stored XSS.This issue affects WP-FB-AutoConnect: from n/a through = 4.6.4...

CVE-2025-50022 WordPress WP-FB-AutoConnect plugin <= 4.6.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in justink WP-FB-AutoConnect allows Stored XSS. This issue affects WP-FB-AutoConnect: from n/a through 4.6.3...

CVE-2025-50022

CVE-2025-50022 is a stored XSS in the WordPress plug‑in WP-FB-AutoConnect. Affected versions are WP-FB-AutoConnect up to 4.6.3 (per NVD/Red Hat/CVE records). Root cause: improper neutralization of input during web page generation leading to stored cross‑site scripting. Public details indicate the...

PT-2025-26379 · WordPress · Wp-Fb-Autoconnect

Name of the Vulnerable Software and Affected Versions: WP-FB-AutoConnect versions through 4.6.3 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables potential attackers to inject...

WordPress plugin WP-FB-AutoConnect 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

WordPress WP-FB-AutoConnect Plugin <= 4.6.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP-FB-AutoConnect Type Plugin Vulnerable versions = 4.6.1 Fixed in 4.6.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-37974 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 6dc7649557b3 Credits Nguyen Xuan Chien...

WordPress WP-FB-AutoConnect 4.0.5 CSRF / XSS

Title: WordPress 'WP-FB-AutoConnect' plugin - XSS/CSRF Version: 4.0.5 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2014/12/12 Download: https://wordpress.org/plugins/wp-fb-autoconnect/ Contacted WordPress: 2014/11/27 ----------------------------------------------------------------...