49 matches found
EUVD-2011-1016
Malware in sbrugna...
EUVD-2011-4564
Malware in sbrugna...
EUVD-2025-4338
Malicious code in bioql PyPI...
EUVD-2023-44919
Malicious code in bioql PyPI...
EUVD-2024-38164
Malicious code in bioql PyPI...
CVE-2024-39659
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Lester ‘GaMerZ’ Chan WP-PostRatings allows Stored XSS.This issue affects WP-PostRatings: from n/a through 1.91.1...
CVE-2021-25117
The WP-PostRatings WordPress plugin before 1.86.1 does not sanitise the postratingsimage parameter from its options page wp-admin/admin.php?page=wp-postratings/postratings-options.php. Even though the page is only accessible to administrators, and protected against CSRF attacks, the issue is stil...
CVE-2011-10006
A vulnerability was found in GamerZ WP-PostRatings up to 1.64. It has been classified as problematic. This affects an unknown part of the file wp-postratings.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 1.65 is able to...
CVE-2011-4646
SQL injection vulnerability in wp-postratings.php in the WP-PostRatings plugin 1.50, 1.61, and probably other versions before 1.62 for WordPress allows remote authenticated users with the Author role to execute arbitrary SQL commands via the id attribute of the ratings shortcode when creating a...
CVE-2025-27328
Cross-Site Request Forgery CSRF vulnerability in queeez WP-PostRatings Cheater wp-postratings-cheater allows Cross Site Request Forgery.This issue affects WP-PostRatings Cheater: from n/a through = 1.5...
CVE-2025-27328
Cross-Site Request Forgery CSRF vulnerability in queeez WP-PostRatings Cheater wp-postratings-cheater allows Cross Site Request Forgery.This issue affects WP-PostRatings Cheater: from n/a through = 1.5...
CVE-2025-27328
CVE-2025-27328: CSRF in WP-PostRatings Cheater (WordPress plugin) affects version <= 1.5; CVSS 3.1: 4.3 (Medium) with NETWORK attack vector, requiring user interaction. Exploitation status not indicated as publicly exploited in provided documents; patch status shown as Unpatched for this CVE i...
CVE-2025-27328 WordPress WP-PostRatings Cheater Plugin <= 1.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in queeez WP-PostRatings Cheater wp-postratings-cheater allows Cross Site Request Forgery.This issue affects WP-PostRatings Cheater: from n/a through = 1.5...
CVE-2025-27328 WordPress WP-PostRatings Cheater Plugin <= 1.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in queeez WP-PostRatings Cheater wp-postratings-cheater allows Cross Site Request Forgery.This issue affects WP-PostRatings Cheater: from n/a through = 1.5...
CVE-2024-39659
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Lester ‘GaMerZ’ Chan WP-PostRatings allows Stored XSS.This issue affects WP-PostRatings: from n/a through 1.91.1...
CVE-2024-39659
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Lester ‘GaMerZ’ Chan WP-PostRatings allows Stored XSS.This issue affects WP-PostRatings: from n/a through 1.91.1...
CVE-2024-39659 WordPress WP-PostRatings plugin <= 1.91.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Lester ‘GaMerZ’ Chan WP-PostRatings allows Stored XSS.This issue affects WP-PostRatings: from n/a through 1.91.1...
CVE-2024-39659
CVE-2024-39659 affects WP-PostRatings up to version 1.91.1 and is a Stored XSS due to improper input neutralization during web page generation. Patch 1.91.2 fixes the issue; Patchstack and Red Hat/Wordfence references confirm the vulnerability type, affected versions, and patch status (Patched fo...
CVE-2024-39659 WordPress WP-PostRatings plugin <= 1.91.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Lester ‘GaMerZ’ Chan WP-PostRatings allows Stored XSS.This issue affects WP-PostRatings: from n/a through 1.91.1...
WordPress WP-PostRatings Plugin <= 1.91.1 is vulnerable to Cross Site Scripting (XSS)
Software WP-PostRatings Type Plugin Vulnerable versions = 1.91.1 Fixed in 1.91.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-39659 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3a1b8a0a2985 Credits stealthcopter Required privilege...