26 matches found
CVE-2023-25048
CVE-2023-25048: Affected software is WordPress plugin Fantastic Content Protector Free (versions
CVE-2023-25048 WordPress Fantastic Content Protector Free plugin <= 2.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in Fantastic Plugins Fantastic Content Protector Free allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fantastic Content Protector Free: from n/a through 2.6...
CVE-2024-2026
The Passster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's contentprotector shortcode in all versions up to, and including, 4.2.6.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
PT-2024-18638 · WordPress · Passster
Name of the Vulnerable Software and Affected Versions: Passster plugin for WordPress versions up to, and including, 4.2.6.4 Description: The issue is related to Stored Cross-Site Scripting via the plugin's content protector shortcode due to insufficient input sanitization and output escaping on...
Stop Scrapers and Scalpers with Akamai Content Protector
...
WordPress Fantastic Content Protector Free Plugin <= 2.6 is vulnerable to Broken Access Control
Software Fantastic Content Protector Free Type Plugin Vulnerable versions = 2.6 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-25048 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 1ac1ef2d7ef5 Credits Rio Darmawan...