WordPress plugin BasePress Docs 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress plugin BasePress Docs 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A code issue...

PT-2024-25359 · Basepress · Basepress

Name of the Vulnerable Software and Affected Versions: Knowledge Base documentation & wiki plugin – BasePress versions n/a through 2.16.1 Description: The issue is a Server-Side Request Forgery SSRF vulnerability. This type of vulnerability allows an attacker to trick the server into making...

WordPress basepress plugin <= 2.16.1 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Yudistira Arya Patchstack Alliance in WordPress Plugin Knowledge Base documentation & wiki plugin – BasePress versions = 2.16.1...

WordPress basepress plugin <= 2.16.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Yudistira Arya Patchstack Alliance in WordPress Plugin Knowledge Base documentation & wiki plugin – BasePress versions = 2.16.1...

WordPress Knowledge Base documentation & wiki plugin – BasePress Plugin <= 2.16.1 is vulnerable to Server Side Request Forgery (SSRF)

Software Knowledge Base documentation & wiki plugin – BasePress Type Plugin Vulnerable versions = 2.16.1 Fixed in 2.16.2.1 OWASP Top 10 A4: Insecure Design Classification Server Side Request Forgery SSRF CVE CVE-2024-33590 Patch priority Low CVSS severity Low 5 Developer Claim ownership PSID...

WordPress Knowledge Base documentation & wiki plugin – BasePress Plugin <= 2.16.1 is vulnerable to Broken Access Control

Software Knowledge Base documentation & wiki plugin – BasePress Type Plugin Vulnerable versions = 2.16.1 Fixed in 2.16.2.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-33588 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID...

WordPress Knowledge Base documentation & wiki plugin – BasePress Plugin <= 2.15.20 is vulnerable to Cross Site Scripting (XSS)

Software Knowledge Base documentation & wiki plugin – BasePress Type Plugin Vulnerable versions = 2.15.20 Fixed in 2.15.21 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 16b7efd2ba...

WordPress Knowledge Base documentation & wiki plugin – BasePress plugin <= 2.15.13 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Knowledge Base documentation & wiki plugin – BasePress plugin versions = 2.15.13. Solution Update the WordPress Knowledge Base documentation & wiki plugin – BasePress plugin to the latest available...

WordPress Knowledge Base documentation & wiki plugin – BasePress plugin <= 2.15.13 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Knowledge Base documentation & wiki plugin – BasePress plugin versions = 2.15.13. Solution Update the WordPress Knowledge Base documentation & wiki plugin – BasePress plugin to the latest available version at least 2.15.14...