Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:9 a.m.5 views

CVE-2019-14681

The Deny All Firewall plugin before 1.1.7 for WordPress allows wp-admin/options-general.php?page=dafsettingsremove=true CSRF...

8.8CVSS7.1AI score0.00795EPSS
Exploits1References1
CNVD
CNVD
added 2019/08/12 12:0 a.m.1 views

WordPress Deny All Firewall plugin cross-site request forgery vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability exists in versions of the WordPress Deny All Firewall plugin prior to 1.1.7, which...

8.8CVSS6.7AI score0.00795EPSS
Exploits1References1
NVD
NVD
added 2019/08/08 8:15 p.m.23 views

CVE-2019-14681

The Deny All Firewall plugin before 1.1.7 for WordPress allows wp-admin/options-general.php?page=dafsettings&dafremove=true CSRF...

8.8CVSS8.8AI score0.00795EPSS
Exploits1References2
OSV
OSV
added 2019/08/08 8:15 p.m.5 views

CVE-2019-14681

The Deny All Firewall plugin before 1.1.7 for WordPress allows wp-admin/options-general.php?page=dafsettings&dafremove=true CSRF...

8.8CVSS7.3AI score0.00795EPSS
Exploits1References2
Prion
Prion
added 2019/08/08 8:15 p.m.12 views

Cross site request forgery (csrf)

The Deny All Firewall plugin before 1.1.7 for WordPress allows wp-admin/options-general.php?page=dafsettings&dafremove=true CSRF...

6.8CVSS8.7AI score0.00795EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/08/08 7:57 p.m.23 views

CVE-2019-14681

The Deny All Firewall plugin before 1.1.7 for WordPress allows wp-admin/options-general.php?page=dafsettings&dafremove=true CSRF...

8.8AI score0.00795EPSS
Exploits1References2
CVE
CVE
added 2019/08/08 7:57 p.m.71 views

CVE-2019-14681

CVE-2019-14681 affects the WordPress plugin Deny All Firewall up to version 1.1.6. The flaw is a CSRF in wp-admin/options-general.php?page=daf_settings&daf_remove=true that an attacker could trigger to perform unintended actions on behalf of an authenticated admin. Impact states partial confident...

8.8CVSS8.7AI score0.00795EPSS
Exploits1References2Affected Software1
Patchstack
Patchstack
added 2019/06/25 12:0 a.m.7 views

WordPress Deny All Firewall plugin <= 1.1.6 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability found in WordPress Deny All Firewall plugin versions = 1.1.6. Solution Update the WordPress Deny All Firewall plugin to the latest available version at least 1.1.7...

3.6AI score
Exploits0Affected Software1
Rows per page
Query Builder