Lucene search
CVE-2023-0496
The HT Event WordPress plugin before 1.4.6 lacks CSRF check allowing attackers to activate arbitrary plugins via CSRF attack
Show more
| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
 | HT Event < 1.4.6 - Arbitrary Plugin Activation via CSRF | 28 Feb 202300:00 | – | wpexploit |
 | Cross site request forgery (csrf) | 27 Mar 202316:15 | – | prion |
 | CVE-2023-0496 HT Event < 1.4.6 - Arbitrary Plugin Activation via CSRF | 27 Mar 202315:37 | – | vulnrichment |
 | CVE-2023-0496 HT Event < 1.4.6 - Arbitrary Plugin Activation via CSRF | 27 Mar 202315:37 | – | cvelist |
 | CVE-2023-0496 | 27 Mar 202316:15 | – | nvd |
 | HT Event < 1.4.6 - Arbitrary Plugin Activation via CSRF | 28 Feb 202300:00 | – | wpvulndb |
 | WordPress HT Event Plugin < 1.4.6 is vulnerable to Cross Site Request Forgery (CSRF) | 28 Mar 202300:00 | – | patchstack |
 | Wordfence Intelligence Weekly WordPress Vulnerability Report (Feb 27, 2023 to Mar 5, 2023) | 9 Mar 202314:32 | – | wordfence |
[
{
"vendor": "Unknown",
"product": "HT Event",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "1.4.6"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo27 Mar 2023 16:15Current
4.5Medium risk
Vulners AI Score4.5
CVSS34.3
EPSS0.00086
SSVC