Lucene search
K

126 matches found

wpexploit
wpexploit
added 2023/10/09 12:0 a.m.214 views

Campaign Monitor Forms < 2.5.6 - Subscriber+ Arbitrary Options Update

Description The plugin does not prevent users with low privileges like subscribers from overwriting any options on a site with the string "true", which could lead to a variety of outcomes, including DoS. Once the site gets at least 25 conversions using the plugin, a notice will show up on the...

8.1CVSS7.1AI score0.0058EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2023/10/09 12:0 a.m.12 views

Campaign Monitor Forms < 2.5.6 - Subscriber+ Arbitrary Options Update

Description The plugin does not prevent users with low privileges like subscribers from overwriting any options on a site with the string "true", which could lead to a variety of outcomes, including DoS. PoC Once the site gets at least 25 conversions using the plugin, a notice will show up on the...

8.1CVSS7AI score0.0058EPSS
Exploits2Affected Software1
Prion
Prion
added 2023/06/07 2:15 a.m.16 views

Design/Logic Flaw

The function updateshipmentstatusemailstatusfun in the plugin Advanced Shipment Tracking for WooCommerce in versions up to 3.2.6 is vulnerable to authenticated arbitrary options update. The function allows attackers including those at customer level to update any WordPress option in the database...

4CVSS6.4AI score0.00654EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/06/07 1:51 a.m.29 views

CVE-2021-4374 WordPress Automatic Plugin <= 3.53.2 - Unauthenticated Arbitrary Options Update

The WordPress Automatic Plugin for WordPress is vulnerable to arbitrary options updates in versions up to, and including, 3.53.2. This is due to missing authorization and option validation in the processform.php file. This makes it possible for unauthenticated attackers to arbitrarily update the...

9.1CVSS9.5AI score0.16408EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2023/06/07 1:51 a.m.11 views

CVE-2021-4361 JobSearch WP Job Board <= 1.8.1 - Missing Authorization to Arbitrary Options Update

The JobSearch WP Job Board plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the jobsearchjobintegrationssettinsave AJAX action in versions up to, and including, 1.8.1. This makes it possible for authenticated attackers to update arbitrary options on...

8.8CVSS7.4AI score0.01206EPSS
Exploits1References3
CVE
CVE
added 2023/06/07 1:51 a.m.51 views

CVE-2021-4347

Summary: The WordPress plugin Advanced Shipment Tracking for WooCommerce (versions up to 3.2.6) is vulnerable due to the function update_shipment_status_email_status_fun , which allows authenticated attackers (including at customer level) to update any WordPress option in the database. The issue ...

9.9CVSS6.3AI score0.00654EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/06/07 1:51 a.m.26 views

CVE-2021-4347 Advanced Shipment Tracking for WooCommerce <= 3.2.6 - Authenticated WordPress Options Change

The function updateshipmentstatusemailstatusfun in the plugin Advanced Shipment Tracking for WooCommerce in versions up to 3.2.6 is vulnerable to authenticated arbitrary options update. The function allows attackers including those at customer level to update any WordPress option in the database...

9.9CVSS9.4AI score0.00654EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/06/07 12:0 a.m.6 views

PT-2023-12456 · Woocommerce · Advanced Shipment Tracking For Woocommerce

Name of the Vulnerable Software and Affected Versions: Advanced Shipment Tracking for WooCommerce versions up to 3.2.6 Description: The issue concerns the function update shipment status email status fun in the Advanced Shipment Tracking for WooCommerce plugin, which is vulnerable to authenticate...

9.9CVSS6.4AI score0.00654EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/02/07 12:0 a.m.14 views

Total Donations Plugin for WordPress < 2.0.6 Arbitrary Options Update

The WordPress Total Donations Plugin installed on the remote host is affected by an Arbitrary Options Update. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...

9.8CVSS7.4AI score0.26076EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/01/30 8:31 p.m.25 views

CVE-2022-4872 WooCommerce Chained Products < 2.12.0 - Unauthenticated Arbitrary Options Update to 'no'

The Chained Products WordPress plugin before 2.12.0 does not have authorisation and CSRF checks, as well as does not ensure that the option to be updated belong to the plugin, allowing unauthenticated attackers to set arbitrary options to 'no'...

5.2AI score0.00281EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/01/30 8:31 p.m.7 views

CVE-2022-4872 WooCommerce Chained Products < 2.12.0 - Unauthenticated Arbitrary Options Update to 'no'

The Chained Products WordPress plugin before 2.12.0 does not have authorisation and CSRF checks, as well as does not ensure that the option to be updated belong to the plugin, allowing unauthenticated attackers to set arbitrary options to 'no'...

4.9AI score0.00281EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/01/09 10:13 p.m.32 views

CVE-2022-4426 Mautic Integration For WooCommerce < 1.0.3 - Arbitrary Options Update via CSRF

The Mautic Integration for WooCommerce WordPress plugin before 1.0.3 does not have proper CSRF check when updating settings, and does not ensure that the options to be updated belong to the plugin, allowing attackers to make a logged in admin change arbitrary blog options via a CSRF attack...

5AI score0.00308EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2023/01/04 12:0 a.m.18 views

WooCommerce Chained Products < 2.12.0 - Unauthenticated Arbitrary Options Update to 'no'

The plugin does not have authorisation and CSRF checks, as well as does not ensure that the option to be updated belong to the plugin, allowing unauthenticated attackers to set arbitrary options to 'no' PoC As unauthenticated, open the following URL to set the Blog Name to 'no':...

4.3CVSS2.8AI score0.00281EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDB
added 2022/12/19 12:0 a.m.21 views

Mautic Integration For WooCommerce < 1.0.3 - Arbitrary Options Update via CSRF

The plugin does not have proper CSRF check when updating settings, and does not ensure that the options to be updated belong to the plugin, allowing attackers to make a logged in admin change arbitrary blog options via a CSRF attack. The attack could also be performed via a LFI if one is present ...

4.3CVSS2AI score0.00308EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2022/12/19 12:0 a.m.110 views

Mautic Integration For WooCommerce < 1.0.3 - Arbitrary Options Update via CSRF

The plugin does not have proper CSRF check when updating settings, and does not ensure that the options to be updated belong to the plugin, allowing attackers to make a logged in admin change arbitrary blog options via a CSRF attack. The attack could also be performed via a LFI if one is present ...

4.3CVSS0.5AI score0.00308EPSS
Exploits2
Cvelist
Cvelist
added 2022/11/09 3:46 p.m.27 views

CVE-2022-41978 WordPress Zoho CRM Lead Magnet plugin <= 1.7.5.8 - Auth. Arbitrary Options Update vulnerability

Auth. subscriber+ Arbitrary Options Update vulnerability in Zoho CRM Lead Magnet plugin = 1.7.5.8 on WordPress...

8.8CVSS8.9AI score0.02971EPSS
Exploits1References2
CVE
CVE
added 2022/11/09 3:46 p.m.66 views

CVE-2022-41978

The CVE-2022-41978 issue affects the WordPress Zoho CRM Lead Magnet plugin, specifically versions up to 1.7.5.8 (and referenced guidance up to 1.7.6.x). The root cause is insufficient authorization and CSRF protections in certain AJAX actions, allowing authenticated users (e.g., subscriber level)...

8.8CVSS6.8AI score0.02971EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/09 3:46 p.m.7 views

CVE-2022-41978 WordPress Zoho CRM Lead Magnet plugin <= 1.7.5.8 - Auth. Arbitrary Options Update vulnerability

Auth. subscriber+ Arbitrary Options Update vulnerability in Zoho CRM Lead Magnet plugin = 1.7.5.8 on WordPress...

8.8CVSS8.7AI score0.02971EPSS
Exploits1References2
WPVulnDB
WPVulnDB
added 2022/10/27 12:0 a.m.25 views

Zoho CRM Lead Magnet < 1.7.6.2 - Subscriber+ Arbitrary Options Update

The plugin does not have authorisation and CSRF in some AJAX actions, and does not ensure that the option to be updated belong to the plugin. As a result, any authenticated users, such as subscriber could update arbitrary blog options such as defaultrole and userscanregister. PoC v response.text...

8.8CVSS0.9AI score0.02971EPSS
Exploits1Affected Software1
wpexploit
wpexploit
added 2022/10/27 12:0 a.m.116 views

Zoho CRM Lead Magnet < 1.7.6.2 - Subscriber+ Arbitrary Options Update

The plugin does not have authorisation and CSRF in some AJAX actions, and does not ensure that the option to be updated belong to the plugin. As a result, any authenticated users, such as subscriber could update arbitrary blog options such as defaultrole and userscanregister. v response.text...

8.8CVSS0.2AI score0.02971EPSS
Exploits1
Rows per page
Query Builder