CVE-2023-35913

Cross-Site Request Forgery CSRF vulnerability in OOPSpam OOPSpam Anti-Spam plugin = 1.1.44 versions...

CVE-2023-35913

Cross-Site Request Forgery CSRF vulnerability in OOPSpam OOPSpam Anti-Spam plugin = 1.1.44 versions...

CVE-2023-35913 WordPress OOPSpam Anti-Spam Plugin <= 1.1.44 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in OOPSpam OOPSpam Anti-Spam plugin = 1.1.44 versions...

WordPress OOPSpam Anti-Spam Plugin <= 1.1.44 is vulnerable to Cross Site Request Forgery (CSRF)

Software OOPSpam Anti-Spam Type Plugin Vulnerable versions = 1.1.44 Fixed in 1.1.45 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-35913 Patch priority Low CVSS severity Low 4.3 Developer OOPSpam LLC PSID 2dfc3bd6e459 Credits Skalucy Required...

CVE-2022-41687

Insecure inherited permissions in the HotKey Services for some IntelR NUC P14E Laptop Element software for Windows 10 before version 1.1.44 may allow an authenticated user to potentially enable escalation of privilege via local access...

Intel NUC 代码问题漏洞

The Intel NUC is a small minicomputer from Intel Corporation USA. A security vulnerability exists in Intel NUC P14E Laptop Element software prior to version 1.1.44, which stems from the presence of an uncontrolled search path element that could allow an authenticated user to potentially enable...

Hardcoded credentials

FlyteAdmin is the control plane for the data processing platform Flyte. Users who enable the default Flyte’s authorization server without changing the default clientid hashes will be exposed to the public internet. In an effort to make enabling authentication easier for Flyte administrators, the...

WordPress Appointment Hour Booking Plugin Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Appointment Hour Booking plugin is an online booking plugin used in it. A cross-site scripting vulnerability exists in WordPress...

CVE-2019-13505

The Appointment Hour Booking plugin 1.1.44 for WordPress allows XSS via the E-mail field, as demonstrated by email1...

PT-2019-13373 · WordPress · Appointment Hour Booking

Name of the Vulnerable Software and Affected Versions: Appointment Hour Booking plugin version 1.1.44 Description: The issue allows for XSS via the E-mail field. Recommendations: For version 1.1.44, update to a newer version that contains a fix for this issue...