39 matches found
EUVD-2021-15059
Malware in sbrugna...
EUVD-2022-49910
Malicious code in bioql PyPI...
CVE-2022-47135
Cross-Site Request Forgery CSRF vulnerability in chronoengine.Com Chronoforms plugin = 7.0.9 versions...
CVE-2021-28376
ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files...
CVE-2022-47135
Cross-Site Request Forgery CSRF vulnerability in chronoengine.Com Chronoforms plugin = 7.0.9 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in chronoengine.Com Chronoforms plugin = 7.0.9 versions...
CVE-2022-47135 WordPress Chronoforms Plugin <= 7.0.9 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in chronoengine.Com Chronoforms plugin = 7.0.9 versions...
CVE-2022-47135 WordPress Chronoforms Plugin <= 7.0.9 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in chronoengine.Com Chronoforms plugin = 7.0.9 versions...
CVE-2022-47135
CVE-2022-47135: Chronoforms WordPress plugin, versions
WordPress plugin Chronoforms 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
WordPress Chronoforms Plugin <= 7.0.9 is vulnerable to Cross Site Request Forgery (CSRF)
Software Chronoforms Type Plugin Vulnerable versions = 7.0.9 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-47135 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 99a338593a2f Credits rezaduty Required privile...
Chronoforms <= 7.0.9 - CSRF
The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...
ChronoEngine ChronoForms Path Traversal Vulnerability
ChronoEngine ChronoForms is ChronoEngine company an easy to use and flexible Joomla form builder . A path traversal vulnerability exists in ChronoEngine ChronoForms that stems from the product failing to properly filter for special elements in the path of a resource or file. An attacker could use...
CVE-2021-28376
ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files...
CVE-2021-28376
ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files...
Directory traversal
ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files...
CVE-2021-28376
ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files...
CVE-2021-28376
ChronoForms 7.0.7 is affected by a directory traversal vulnerability (fname path traversal) that allows reading arbitrary files outside restricted directories. The issue originates from insufficient filtering of special path elements in resource/file paths in ChronoForms 7.0.7. The vulnerability ...
ChronoEngine ChronoForms 路径遍历漏洞
ChronoEngine ChronoForms is an easy-to-use and flexible Joomla form builder from ChronoEngine. A path traversal vulnerability exists in ChronoEngine ChronoForms that stems from the product failing to properly filter for special elements in the path of a resource or file. An attacker could use thi...
ChronoEngine ChronoForms 路径遍历漏洞
ChronoEngine ChronoForms is ChronoEngine company an easy to use and flexible Joomla form builder . A path traversal vulnerability exists in ChronoEngine ChronoForms that stems from the product failing to properly filter for special elements in the path of a resource or file. An attacker could use...