74 matches found
EUVD-2023-51873
Malicious code in bioql PyPI...
EUVD-2024-27426
Malicious code in bioql PyPI...
EUVD-2024-47748
Malicious code in bioql PyPI...
EUVD-2022-46490
Malicious code in bioql PyPI...
CVE-2025-59591 WordPress wpDiscuz Plugin <= 7.6.33 - Broken Access Control Vulnerability
Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.33...
CVE-2025-59591
Technical details about CVE-2025-59591 (wpDiscuz) are not provided in the connected documents. The initial description mentions missing authorization in wpDiscuz up to version 7.6.33, but no root-cause, affected builds, exploit, or remediation details are included here; monitor for updates.
CVE-2025-59591 WordPress wpDiscuz Plugin <= 7.6.33 - Broken Access Control Vulnerability
Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.33...
WordPress wpDiscuz Plugin <= 7.6.33 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Legion Hunter in WordPress Plugin wpDiscuz versions = 7.6.33...
CVE-2023-47775
Cross-Site Request Forgery CSRF vulnerability in gVectors Team Comments — wpDiscuz plugin = 7.6.11 versions...
CVE-2023-47185
Unauth. Stored Cross-Site Scripting XSS vulnerability in gVectors Team Comments — wpDiscuz plugin = 7.6.11 versions...
CVE-2023-3998
The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the userRate function in versions up to, and including, 7.6.3. This makes it possible for unauthenticated attackers to increase or decrease the rating of a post...
CVE-2021-24806
The wpDiscuz WordPress plugin before 7.3.4 does check for CSRF when adding, editing and deleting comments, which could allow attacker to make logged in users such as admin edit and delete arbitrary comment, or the user who made the comment to edit it via a CSRF attack. Attackers could also make...
CVE-2021-24737
The Comments – wpDiscuz WordPress plugin through 7.3.0 does not properly sanitise or escape the Follow and Unfollow messages before outputting them in the page, which could allow high privilege users to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is...
CVE-2024-9488
The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.6.24. This is due to insufficient verification on the user being returned by the social login token. This makes it possible for unauthenticated attackers to log in as any...
CVE-2023-46309 WordPress wpDiscuz plugin <= 7.6.10 - Broken Access Control vulnerability
Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.10...
CVE-2023-46309 WordPress wpDiscuz plugin <= 7.6.10 - Broken Access Control vulnerability
Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.10...
CVE-2023-45760 WordPress wpDiscuz plugin <= 7.6.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.3...
CVE-2023-45760 WordPress wpDiscuz plugin <= 7.6.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in AdvancedCoding wpDiscuz wpdiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through = 7.6.3...
The vulnerability of the wpDiscuz plugin of the WordPress content management system allows attackers to compromise data integrity.
The vulnerability of the wpDiscuz plugin in the WordPress content management system is related to the failure to remove scipt-related HTML tags from web pages. Exploiting this vulnerability allows a malicious actor to compromise data integrity...
CVE-2024-9488
The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.6.24. This is due to insufficient verification on the user being returned by the social login token. This makes it possible for unauthenticated attackers to log in as any...