10 matches found
EUVD-2019-5830
Malware in sbrugna...
CVE-2019-14679
core/views/arpriceimportexport.php in the ARPrice Lite plugin 2.2 for WordPress allows wp-admin/admin.php?page=arpliteimportexport CSRF...
CVE-2022-0867 ARPrice Lite < 3.6.1 - Unauthenticated SQLi
The Pricing Table WordPress plugin before 3.6.1 fails to properly sanitize and escape user supplied POST data before it is being interpolated in an SQL statement and then executed via an AJAX action available to unauthenticated users...
The vulnerability of the ARPrice Lite plugin of the WordPress content management system allows a hacker to perform a CSRF attack.
The vulnerability of the ARPrice Lite plugin of the WordPress content management system is related to insufficient protection when entering CSRF requests. Exploiting this vulnerability can allow a remote attacker to execute a CSRF attack...
WordPress ARPrice Lite plugin cross-site request forgery vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability exists in the core/views/arpriceimportexport.php file in version 2.2 of the WordPr...
CVE-2019-14679
core/views/arpriceimportexport.php in the ARPrice Lite plugin 2.2 for WordPress allows wp-admin/admin.php?page=arpliteimportexport CSRF...
CVE-2019-14679
core/views/arpriceimportexport.php in the ARPrice Lite plugin 2.2 for WordPress allows wp-admin/admin.php?page=arpliteimportexport CSRF...
Cross site request forgery (csrf)
core/views/arpriceimportexport.php in the ARPrice Lite plugin 2.2 for WordPress allows wp-admin/admin.php?page=arpliteimportexport CSRF...
CVE-2019-14679
core/views/arpriceimportexport.php in the ARPrice Lite plugin 2.2 for WordPress allows wp-admin/admin.php?page=arpliteimportexport CSRF...
CVE-2019-14679
CVE-2019-14679 concerns the ARPrice Lite WordPress plugin (version 2.2) where core/views/arprice_import_export.php is vulnerable to CSRF via wp-admin/admin.php?page=arplite_import_export. The issue could allow an authenticated user to trigger unintended actions on that page. CVSS details indicate...