CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-28071

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00104EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:54 a.m.•4 views

CVE-2023-24007

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

8.8CVSS7.1AI score0.00104EPSS

Exploits0References1

NVD•added 2023/05/26 12:15 p.m.•11 views

CVE-2023-24007

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

8.8CVSS5.8AI score0.00104EPSS

Exploits0References1

OSV•added 2023/05/26 12:15 p.m.•2 views

CVE-2023-24007

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

8.8CVSS7.3AI score0.00104EPSS

Exploits0References1

Prion•added 2023/05/26 12:15 p.m.•22 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

6.8CVSS8.8AI score0.00104EPSS

Exploits0References1Affected Software1

CVE•added 2023/05/26 11:57 a.m.•48 views

CVE-2023-24007

CVE-2023-24007 is a CSRF vulnerability in the WordPress plugin Admin Block Country (TheOnlineHero Tom Skroza) with affected versions up to 7.1.4. The issue stems from Cross-Site Request Forgery in the plugin, enabling unauthorized actions when a user is authenticated. Public sources in the connec...

8.8CVSS6.5AI score0.00104EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/05/26 11:57 a.m.•6 views

CVE-2023-24007 WordPress Admin Block Country Plugin <= 7.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

4.3CVSS7.1AI score0.00104EPSS

Exploits0References1

Cvelist•added 2023/05/26 11:57 a.m.•14 views

CVE-2023-24007 WordPress Admin Block Country Plugin <= 7.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in TheOnlineHero - Tom Skroza Admin Block Country plugin = 7.1.4 versions...

4.3CVSS9AI score0.00104EPSS

Exploits0References1

CNNVD•added 2023/05/26 12:0 a.m.•1 views

WordPress plugin admin-block-country 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

8.8CVSS8.1AI score0.00104EPSS

Exploits0References2

Patchstack•added 2023/02/23 12:0 a.m.•12 views

WordPress Admin Block Country Plugin <= 7.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Admin Block Country Type Plugin Vulnerable versions = 7.1.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-24007 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3a91506c8122 Credits Mika Required...

8.8CVSS7AI score0.00104EPSS

Exploits0References1Affected Software1

WPVulnDB•added 2023/02/23 12:0 a.m.•15 views

Admin Block Country <= 7.1.4 - Cross-Site Request Forgery (CSRF)

The plugin does not protect some of its actions in the adminblockcountryinitialpage function against CSRF attacks, allowing an attacker to modify country blocks or methods on their behalf by tricking a logged in administrator to submit a crafted request...

8.8CVSS6.7AI score0.00104EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by