Riasztások
2025. Júl. 16.
NA - CVE-2025-28965 - Missing Authorization vulnerability in Md...
Missing Authorization vulnerability in Md Yeasin Ul Haider URL Shortener allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects URL Shortener: from n/a through 3.0.7.
2025. Júl. 16.
NA - CVE-2025-28982 - Improper Neutralization of Special Elements...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ThimPress WP Pipes allows SQL Injection. This issue affects WP Pipes: from n/a...
2025. Júl. 16.
NA - CVE-2025-29000 - Missing Authorization vulnerability in August...
Missing Authorization vulnerability in August Infotech Multi-language Responsive Contact Form allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Multi-language...
2025. Júl. 16.
NA - CVE-2025-29009 - Unrestricted Upload of File with Dangerous Type...
Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce allows Upload a Web Shell to a Web Server. This issue affects Medical...
2025. Júl. 16.
NA - CVE-2025-30936 - Improper Neutralization of Special Elements...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Torod Company for Information Technology Torod allows SQL Injection. This issue...
2025. Júl. 16.
NA - CVE-2025-30949 - Deserialization of Untrusted Data vulnerability...
Deserialization of Untrusted Data vulnerability in Guru Team Site Chat on Telegram allows Object Injection. This issue affects Site Chat on Telegram: from n/a through 1.0.4.
2025. Júl. 16.
NA - CVE-2025-30955 - Improper Neutralization of Input During Web...
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GT3themes ListingEasy allows Reflected XSS. This issue affects ListingEasy: from n/a...
2025. Júl. 16.
NA - CVE-2025-30959 - Missing Authorization vulnerability in...
Missing Authorization vulnerability in WPFactory Product XML Feed Manager for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Product XML...
2025. Júl. 16.
NA - CVE-2025-30973 - Deserialization of Untrusted Data vulnerability...
Deserialization of Untrusted Data vulnerability in Codexpert, Inc CoSchool LMS allows Object Injection. This issue affects CoSchool LMS: from n/a through 1.4.3.
2025. Júl. 16.
NA - CVE-2025-31055 - Improper Neutralization of Input During Web...
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vergatheme Electrician - Electrical Service WordPress allows Reflected XSS. This...