EUVD-2023-32202

Malicious code in bioql PyPI...

EUVD-2025-30575

Malicious code in bioql PyPI...

CVE-2025-58262

Cross-Site Request Forgery CSRF vulnerability in WPDirectoryKit Sweet Energy Efficiency sweet-energy-efficiency allows Stored XSS.This issue affects Sweet Energy Efficiency: from n/a through = 1.0.8...

CVE-2025-58262

Cross-Site Request Forgery CSRF vulnerability in WPDirectoryKit Sweet Energy Efficiency sweet-energy-efficiency allows Stored XSS.This issue affects Sweet Energy Efficiency: from n/a through = 1.0.8...

PT-2025-38925

Name of the Vulnerable Software and Affected Versions wpdirectorykit Sweet Energy Efficiency versions through 1.0.6 Description A Cross-Site Request Forgery CSRF issue exists in wpdirectorykit Sweet Energy Efficiency, which also allows Stored Cross-Site Scripting XSS. Recommendations Update...

CVE-2024-37487

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in wpdirectorykit.Com WP Directory Kit allows Reflected XSS.This issue affects WP Directory Kit: from n/a through 1.3.5...

CVE-2024-37253

Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in WpDirectoryKit WP Directory Kit allows Code Injection.This issue affects WP Directory Kit: from n/a through 1.3.6...

CVE-2024-37253

CVE-2024-37253 describes an HTML injection vulnerability in the WordPress plugin WP Directory Kit (affected: versions <= 1.3.6) due to improper neutralization of output in a downstream element. The CVE is documented across multiple feeds (NVD/Red Hat/CVE list) with the Wordfence vulnerability ...

CVE-2024-37253 WordPress WPDirectoryKit plugin <= 1.3.6 - HTML Injection vulnerability

Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in WpDirectoryKit WP Directory Kit allows Code Injection.This issue affects WP Directory Kit: from n/a through 1.3.6...

CVE-2024-37253 WordPress WPDirectoryKit plugin <= 1.3.6 - HTML Injection vulnerability

Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in WpDirectoryKit WP Directory Kit allows Code Injection.This issue affects WP Directory Kit: from n/a through 1.3.6...

WordPress WPDirectoryKit plugin <= 1.3.6 - HTML Injection vulnerability

HTML Injection vulnerability discovered by Sandeep Vishwakarma from eSec Forte Technologies Pvt Ltd. Patchstack Alliance in WordPress Plugin WP Directory Kit versions = 1.3.6...

CVE-2024-29774

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WpDirectoryKit WP Directory Kit allows Reflected XSS.This issue affects WP Directory Kit: from n/a through 1.2.9...