4 matches found
CVE-2023-6532
creationtimestamp| type| source ---|---|--- 2024-01-08 20:27:15+00:00| seen| https://t.me/ctinow/164613 2024-01-25 16:22:15+00:00| seen| https://t.me/ctinow/173548 2025-06-18 17:39:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18805...
CVE-2023-6532 WP Blogs' Planetarium <= 1.0 - Settings Update via CSRF
The WP Blogs' Planetarium WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2023-6532 WP Blogs' Planetarium <= 1.0 - Settings Update via CSRF
The WP Blogs' Planetarium WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2023-6532
CVE-2023-6532 affects WP Blogs' Planetarium WordPress plugin ≤ 1.0. The issue is missing CSRF protection on settings updates, enabling a CSRF attack to cause a logged-in administrator to change settings. No explicit exploitation details are provided in the documents; remediation status/patch avai...