3 matches found
CVE-2023-49164
creationtimestamp| type| source ---|---|--- 2023-12-20 13:53:19+00:00| seen| https://t.me/ctinow/156987 2024-01-13 12:56:41+00:00| seen| https://t.me/ctinow/167815...
CVE-2023-49164
The CVE describes a Cross-Site Request Forgery (CSRF) in the WordPress OceanWP Ocean Extra plugin affecting versions through 2.2.2. The vulnerability enables an attacker to induce a user to trigger unintended actions on the web application, including potential arbitrary plugin activation. Impact ...
WordPress Ocean Extra Plugin <= 2.2.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Ocean Extra Type Plugin Vulnerable versions = 2.2.2 Fixed in 2.2.3 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-49164 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID b19c0811bb18 Credits Dave Jong Patchstack...