Lucene search
CVE-2023-1340
The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.1. This is due to missing or incorrect nonce validation on the clear_uucss_logs function
Show more
| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
 | Cross site request forgery (csrf) | 10 Mar 202320:15 | – | prion |
 | CVE-2023-1340 | 10 Mar 202319:05 | – | cvelist |
 | CVE-2023-1340 | 10 Mar 202320:15 | – | nvd |
 | WordPress RapidLoad Power-Up for Autoptimize Plugin <= 1.7.1 is vulnerable to Cross Site Request Forgery (CSRF) | 13 Mar 202300:00 | – | patchstack |
 | CVE-2023-1340 | 10 Mar 202319:05 | – | vulnrichment |
 | RapidLoad Power-Up for Autoptimize < 1.7.2 - Multiple Subscriber+ Unauthorised AJAX Calls | 10 Mar 202300:00 | – | wpvulndb |
| RapidLoad Power-Up for Autoptimize < 1.7.2 - Unauthorised AJAX Calls | 10 Mar 202300:00 | – | wpvulndb |
 | Wordfence Intelligence Weekly WordPress Vulnerability Report (Mar 6, 2023 to Mar 12, 2023) | 16 Mar 202313:53 | – | wordfence |
Node
[
{
"vendor": "shakee93",
"product": "RapidLoad Power-Up for Autoptimize",
"versions": [
{
"version": "*",
"status": "affected",
"lessThanOrEqual": "1.7.1",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo10 Mar 2023 20:15Current
5.1Medium risk
Vulners AI Score5.1
CVSS34.3
EPSS0.00132
SSVC