3 matches found
CVE-2024-1501
creationtimestamp| type| source ---|---|--- 2024-02-21 05:26:43+00:00| seen| https://t.me/ctinow/189205 2024-02-21 05:26:56+00:00| seen| https://t.me/ctinow/189216 2024-02-22 04:41:54+00:00| seen| https://t.me/arpsyndicate/3942 2024-03-08 17:21:35+00:00| seen| https://t.me/ctinow/203444...
CVE-2024-1501
CVE-2024-1501 affects the WordPress plugin Database Reset (WP Database Reset) up to version 3.22. The issue is a Cross-Site Request Forgery (CSRF) due to missing/incorrect nonce validation on the install_wpr() function, allowing unauthenticated attackers to trigger installation of the WP Reset Pl...
WordPress WP Database Reset Plugin <= 3.22 is vulnerable to Cross Site Request Forgery (CSRF)
Software WP Database Reset Type Plugin Vulnerable versions = 3.22 Fixed in 3.23 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-1501 Patch priority Low CVSS severity Low 4.7 Developer WebFactory Ltd. PSID c53221c813e9 Credits Lucio Sá Required...