Lucene search
K

104 matches found

OSV
OSV
added 2023/11/22 2:15 p.m.3 views

CVE-2023-26532

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes Social Auto Poster plugin = 2.1.4 versions...

8.8CVSS5.8AI score0.00269EPSS
Exploits0References1
NVD
NVD
added 2023/11/22 2:15 p.m.15 views

CVE-2023-26532

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes Social Auto Poster plugin = 2.1.4 versions...

8.8CVSS0.00269EPSS
Exploits0References1
Prion
Prion
added 2023/11/22 2:15 p.m.16 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes Social Auto Poster plugin = 2.1.4 versions...

6.8CVSS7.4AI score0.00269EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/22 2:0 p.m.18 views

CVE-2023-26532 WordPress Social Auto Poster Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes Social Auto Poster plugin = 2.1.4 versions...

5.4CVSS9AI score0.00269EPSS
Exploits0References1
CVE
CVE
added 2023/11/22 2:0 p.m.44 views

CVE-2023-26532

The CVE-2023-26532 entry describes a Cross-Site Request Forgery (CSRF) vulnerability in the AccessPress Themes Social Auto Poster plugin for WordPress, affecting versions up to and including 2.1.4. Root cause: CSRF could allow unauthorized actions on behalf of a logged-in user (or unauthenticated...

8.8CVSS7.2AI score0.00269EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/22 12:0 a.m.5 views

PT-2023-20708 · Accesspress Themes · Accesspress Themes Social Auto Poster

Name of the Vulnerable Software and Affected Versions: AccessPress Themes Social Auto Poster plugin versions = 2.1.4 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a...

8.8CVSS8.5AI score0.00269EPSS
Exploits0References3
OSV
OSV
added 2023/11/13 12:15 a.m.5 views

CVE-2023-26518

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes WP TFeed plugin = 1.6.9 versions...

8.8CVSS7.3AI score0.00301EPSS
Exploits0References1
NVD
NVD
added 2023/11/13 12:15 a.m.23 views

CVE-2023-26518

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes WP TFeed plugin = 1.6.9 versions...

8.8CVSS0.00301EPSS
Exploits0References1
Prion
Prion
added 2023/11/13 12:15 a.m.18 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes WP TFeed plugin = 1.6.9 versions...

6.8CVSS7.5AI score0.00301EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/12 11:43 p.m.26 views

CVE-2023-26518 WordPress WP TFeed Plugin <= 1.6.9 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes WP TFeed plugin = 1.6.9 versions...

5.4CVSS9AI score0.00301EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/12 11:43 p.m.21 views

CVE-2023-26518 WordPress WP TFeed Plugin <= 1.6.9 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes WP TFeed plugin = 1.6.9 versions...

5.4CVSS7.1AI score0.00301EPSS
Exploits0References1
CVE
CVE
added 2023/11/12 11:43 p.m.53 views

CVE-2023-26518

CVE-2023-26518 is a Cross-Site Request Forgery (CSRF) vulnerability in the AccessPress Themes WP TFeed plugin, affected at versions

8.8CVSS7.1AI score0.00301EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/11/12 12:0 a.m.4 views

WordPress Plugin accesspress-twitter-feed Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

8.8CVSS6.5AI score0.00301EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/11/12 12:0 a.m.5 views

PT-2023-20697 · Accesspress Themes · Accesspress Themes Wp Tfeed Plugin

Name of the Vulnerable Software and Affected Versions: AccessPress Themes WP TFeed plugin versions = 1.6.9 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web...

8.8CVSS8.5AI score0.00301EPSS
Exploits0References3
CNVD
CNVD
added 2022/02/23 12:0 a.m.29 views

WordPress plugin AccessPress Themes has an unspecified vulnerability

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress plugin AccessPress Themes has a security vulnerability that stems from the existence of a backdoor in the vendor...

9.8CVSS2.2AI score0.18878EPSS
Exploits1References1
NVD
NVD
added 2022/02/21 11:15 a.m.49 views

CVE-2021-24867

Numerous Plugins and Themes from the AccessPress Themes aka Access Keys vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were updated or removed to...

9.8CVSS0.18878EPSS
Exploits1References2
OSV
OSV
added 2022/02/21 11:15 a.m.26 views

CVE-2021-24867

Numerous Plugins and Themes from the AccessPress Themes aka Access Keys vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were updated or removed to...

9.8CVSS7.1AI score
Exploits0References2
Prion
Prion
added 2022/02/21 11:15 a.m.20 views

Design/Logic Flaw

Numerous Plugins and Themes from the AccessPress Themes aka Access Keys vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were updated or removed to...

7.5CVSS9.4AI score0.18878EPSS
Exploits1References2Affected Software93
CVE
CVE
added 2022/02/21 10:45 a.m.184 views

CVE-2021-24867

CVE-2021-24867 relates to backdoored AccessPress Themes plugins/themes distributed via the vendor site (not from wordpress.org). The vulnerability was exploited in the wild to deploy web shells and site defacements, observed by Talos IR as part of initial access through exploitation of a WordPres...

9.8CVSS9.6AI score0.18878EPSS
Exploits1References2Affected Software93
CNNVD
CNNVD
added 2022/02/21 12:0 a.m.19 views

WordPress plugin AccessPress 安全漏洞

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress plugin AccessPress Themes has a security vulnerability that stems from the existence of a backdoor in the vendor...

9.8CVSS5.5AI score0.18878EPSS
Exploits1References4
Rows per page
Query Builder