7 matches found
CVE-2023-2010
The Forminator WordPress plugin before 1.24.1 does not use an atomic operation to check whether a user has already voted, and then update that information. This leads to a Race Condition that may allow a single user to vote multiple times on a poll...
WordPress Forminator Plugin < 1.24.1 Race Condition Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:incsub:forminator"; if description...
CVE-2023-2010
The Forminator WordPress plugin before 1.24.1 does not use an atomic operation to check whether a user has already voted, and then update that information. This leads to a Race Condition that may allow a single user to vote multiple times on a poll...
CVE-2023-2010
The CVE-2023-2010 vulnerability affects the WordPress Forminator plugin versions prior to 1.24.1. The root cause is a lack of an atomic operation to verify whether a user has already voted before updating the vote status, resulting in a race condition that may allow a single user to vote multiple...
CVE-2023-2010 Forminator < 1.24.1 - Unauthenticated Race Condition on poll vote
The Forminator WordPress plugin before 1.24.1 does not use an atomic operation to check whether a user has already voted, and then update that information. This leads to a Race Condition that may allow a single user to vote multiple times on a poll...
WordPress Forminator Plugin < 1.24.1 is vulnerable to Race Condition
Software Forminator Type Plugin Vulnerable versions 1.24.1 Fixed in 1.24.1 OWASP Top 10 A6: Security Misconfiguration Classification Race Condition CVE CVE-2023-2010 Patch priority Low CVSS severity Low 3.7 Developer WPMU DEV PSID 6f5ec8b39b84 Credits Amirmohammad Vakili Required privilege...
CVE-2023-2010
creationtimestamp| type| source ---|---|--- 2023-04-07 12:30:05+00:00| seen| https://t.me/truesecator/4264...