19 matches found
EUVD-2024-29907
Malicious code in bioql PyPI...
EUVD-2024-29908
Malicious code in bioql PyPI...
CVE-2024-32085
Cross-Site Request Forgery CSRF vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a before 5.20.0...
CVE-2024-32086
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a through 5.18.1...
Citadela Listing <= 5.18.1 - Cross-Site Request Forgery
Description The Citadela Listing plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.18.1. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action vi...
CVE-2024-32086
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a through 5.18.1...
CVE-2024-32086 WordPress Citadela Listing plugin <= 5.18.1 - Unauth. Sensitive Data Exposure vulnerability
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a through 5.18.1...
CVE-2024-32086
CVE-2024-32086 affects Citadela Directory (Citadela Listing) from n/a through 5.18.1, described as Unauthenticated Exposure of Sensitive Information to an Unauthorized Actor. Public documents list this vulnerability as unpatched. A Red Hat entry reiterates the same description and patch status. n...
CVE-2024-32086 WordPress Citadela Listing plugin <= 5.18.1 - Unauth. Sensitive Data Exposure vulnerability
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a through 5.18.1...
WordPress Plugin Citadela Listing 信息泄露漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Citadela Listing Version...
CVE-2024-32085
Cross-Site Request Forgery CSRF vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a before 5.20.0...
CVE-2024-32085
Cross-Site Request Forgery CSRF vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a before 5.20.0...
CVE-2024-32085
CVE-2024-32085 is a CSRF vulnerability in Citadela Directory (Citadela Listing) affecting versions before 5.20.0. The WordPress Citadela Directory entry indicates the vulnerability is currently Unpatched; no exploit details or fixes are provided in the connected sources.
CVE-2024-32085 WordPress Citadela Listing plugin < 5.20.0 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a before 5.20.0...
CVE-2024-32085 WordPress Citadela Listing plugin < 5.20.0 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a before 5.20.0...
WordPress Citadela Listing plugin <= 5.18.1 - Unauth. Sensitive Data Exposure vulnerability
Unauth. Sensitive Data Exposure vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Citadela Listing versions = 5.18.1...
WordPress Citadela Listing plugin < 5.20.0 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Citadela Listing versions 5.20.0...
WordPress Citadela Listing Plugin <= 5.18.1 is vulnerable to Sensitive Data Exposure
Software Citadela Listing Type Plugin Vulnerable versions = 5.18.1 Fixed in 5.19.1 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-32086 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID a5c3aebb62b7 Credits Dave Jong Patchstack...
WordPress Citadela Listing Plugin < 5.20.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software Citadela Listing Type Plugin Vulnerable versions 5.20.0 Fixed in 5.20.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32085 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID f26a9b49d873 Credits Dave Jong Patchsta...