2 matches found
WordPress WPaudio MP3 Player Plugin <= 4.0.2 is vulnerable to Cross Site Scripting (XSS)
Software WPaudio MP3 Player Type Plugin Vulnerable versions = 4.0.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0069 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID aeffad94b998 Credits Lana Codes Requir...
WordPress Leyka Plugin <= 3.29.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Leyka Type Plugin Vulnerable versions = 3.29.2 Fixed in 3.30 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-27442 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID dc5061a06f06 Credits yuyudhn Required privilege...