EUVD-2024-32770

Malicious code in bioql PyPI...

CVE-2024-4218

The AffiEasy plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.6. This is due to plugin improperly releasing the tagged and patched version of the plugin - the vulnerable version is used as the core files, while the patched version was...

CVE-2024-4218 AffiEasy <= 1.1.6 - Cross-Site Request Forgery to Various Actions

The AffiEasy plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.6. This is due to plugin improperly releasing the tagged and patched version of the plugin - the vulnerable version is used as the core files, while the patched version was...

CVE-2024-4218

CVE-2024-4218 affects the AffiEasy WordPress plugin up to version 1.1.7, with a Cross-Site Request Forgery (CSRF) flaw that can be exploited by unauthenticated attackers via forged requests if a site administrator is tricked into performing an action. Connected sources confirm the issue and list ...

WordPress plugin AffiEasy 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

PT-2024-29786 · WordPress · Affieasy

Name of the Vulnerable Software and Affected Versions: AffiEasy plugin for WordPress versions up to, and including, 1.1.7 Description: The issue is related to Cross-Site Request Forgery. This occurs because the plugin improperly releases the tagged and patched version, using the vulnerable versio...

WordPress AffiEasy plugin <= 1.1.6 - Cross-Site Request Forgery to Various Actions vulnerability

Cross-Site Request Forgery to Various Actions vulnerability discovered by Benedictus Jovan aillesiM in WordPress Plugin AffiEasy versions = 1.1.6...

WordPress AffiEasy Plugin <= 1.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software AffiEasy Type Plugin Vulnerable versions = 1.1.7 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-4218 Patch priority Low CVSS severity Low 6.5 Developer AffiEasy PSID 6a6d4298e483 Credits Benedictus Jovan aillesiM Required...

WordPress AffiEasy Plugin < 1.1.4 is vulnerable to Cross Site Scripting (XSS)

Software AffiEasy Type Plugin Vulnerable versions 1.1.4 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer AffiEasy PSID 3e6342eaad96 Credits Rafie Muhammad Patchstack Required privilege...