17 matches found
CVE-2025-49913 WordPress CoSchedule plugin <= 3.4.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in CoSchedule CoSchedule coschedule-by-todaymade allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CoSchedule: from n/a through = 3.4.0...
CVE-2025-49913
CVE-2025-49913 : WordPress plugin CoSchedule (coschedule-by-todaymade) suffers a Missing Authorization / Broken Access Control vulnerability, affecting versions up to and including 3.4.0. The issue allows an improperly configured access control level to be exploited, enabling unauthorized access ...
CVE-2025-49913 WordPress CoSchedule plugin <= 3.4.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in CoSchedule CoSchedule coschedule-by-todaymade allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CoSchedule: from n/a through = 3.4.0...
EUVD-2022-49940
Malicious code in bioql PyPI...
WordPress CoSchedule Plugin <= 3.3.11 - Sensitive Data Exposure Vulnerability
Sensitive Data Exposure Vulnerability discovered by Bao - BlueRock in WordPress Plugin CoSchedule versions = 3.3.11...
CVE-2025-60119 WordPress CoSchedule Plugin <= 3.3.11 - Sensitive Data Exposure Vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in CoSchedule CoSchedule coschedule-by-todaymade allows Retrieve Embedded Sensitive Data.This issue affects CoSchedule: from n/a through = 3.3.11...
CVE-2025-60119
CVE-2025-60119 : In CoSchedule for WordPress, an Unauthenticated Sensitive Information Exposure vulnerability affects CoSchedule up to version 3.3.11 (per Wordfence). The issue leaks sensitive data to unauthorized actors due to insufficient access control. Wordfence indicates a patch is available...
CVE-2025-60119 WordPress CoSchedule Plugin <= 3.3.11 - Sensitive Data Exposure Vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in CoSchedule CoSchedule coschedule-by-todaymade allows Retrieve Embedded Sensitive Data.This issue affects CoSchedule: from n/a through = 3.3.11...
WordPress plugin CoSchedule 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
CVE-2022-47165
Cross-Site Request Forgery CSRF vulnerability in CoSchedule plugin = 3.3.8 versions...
CVE-2022-47165
Cross-Site Request Forgery CSRF vulnerability in CoSchedule plugin = 3.3.8 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in CoSchedule plugin = 3.3.8 versions...
CVE-2022-47165 WordPress CoSchedule Plugin <= 3.3.8 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in CoSchedule plugin = 3.3.8 versions...
CVE-2022-47165 WordPress CoSchedule Plugin <= 3.3.8 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in CoSchedule plugin = 3.3.8 versions...
CVE-2022-47165
CVE-2022-47165 describes a Cross-Site Request Forgery (CSRF) in the WordPress CoSchedule plugin for versions
PT-2023-15208 · WordPress · Coschedule
Name of the Vulnerable Software and Affected Versions: CoSchedule plugin versions prior to 3.3.9 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...
WordPress CoSchedule Plugin <= 3.3.8 is vulnerable to Cross Site Request Forgery (CSRF)
Software CoSchedule Type Plugin Vulnerable versions = 3.3.8 Fixed in 3.3.9 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-47165 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 13c282a9267d Credits István Márton Required...