6 matches found
CVE-2023-4645
The Ad Inserter for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.7.30 via the aiajax function. This can allow unauthenticated attackers to extract sensitive data such as post titles and slugs including those of protected posts along with their...
CVE-2017-11365
Certain Symfony products are affected by: Incorrect Access Control. This affects Symfony 2.7.30 and Symfony 2.8.23 and Symfony 3.2.10 and Symfony 3.3.3. The type of exploitation is: remote. The component is: Password validator...
WordPress Ad Inserter Plugin <= 2.7.30 is vulnerable to Sensitive Data Exposure
Software Ad Inserter Type Plugin Vulnerable versions = 2.7.30 Fixed in 2.7.31 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-4645 Patch priority Low CVSS severity Low 5.3 Developer Igor Funa PSID d835574a9ec2 Credits Marco Wotschka Required privilege...
WordPress Ad Inserter Plugin <= 2.7.30 is vulnerable to Sensitive Data Exposure
Software Ad Inserter Type Plugin Vulnerable versions = 2.7.30 Fixed in 2.7.31 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-4668 Patch priority Low CVSS severity Low 5.3 Developer Igor Funa PSID c1880bc4c6b9 Credits Marco Wotschka Required privilege...
Symfony Incorrect Access Control
Certain Symfony products are affected by: Incorrect Access Control. This affects Symfony 2.7.30 and Symfony 2.8.23 and Symfony 3.2.10 and Symfony 3.3.3. The type of exploitation is: remote. The component is: Password validator...
UBUNTU-CVE-2017-11365
Certain Symfony products are affected by: Incorrect Access Control. This affects Symfony 2.7.30 and Symfony 2.8.23 and Symfony 3.2.10 and Symfony 3.3.3. The type of exploitation is: remote. The component is: Password validator...