WordPress WP BrowserUpdate Plugin <= 4.4.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP BrowserUpdate Type Plugin Vulnerable versions = 4.4.1 Fixed in 4.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-31078 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ca8233546f51 Credits qilin99 Required...

WordPress WP BrowserUpdate Plugin <= 4.5 is vulnerable to Cross Site Scripting (XSS)

Software WP BrowserUpdate Type Plugin Vulnerable versions = 4.5 Fixed in 4.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-28690 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID b9737efa9b15 Credits qilin99 Required privilege...