CVE-2025-49283 WordPress Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant plugin <= 4.1.1 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Matthias Nordwig Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant gdpr-compliant-recaptcha-for-all-forms allows Cross Site Request Forgery.This issue affects Anti-spam, Spam protection, ReCaptcha for all forms and...

WordPress plugin Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant 跨站请求伪造漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. Cross-site request forgery vulnerability...

CVE-2023-5823

Cross-Site Request Forgery CSRF vulnerability in ThemeKraft TK Google Fonts GDPR Compliant plugin = 2.2.11 versions...

eilo.org Cross Site Scripting vulnerability OBB-3828505

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

TK Google Fonts GDPR Compliant < 2.2.12 - Missing Authorization to Font Deletion

Description The TK Google Fonts GDPR Compliant plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tkgooglefontsdeletefont function in all versions up to, and including, 2.2.11. This makes it possible for authenticated attackers, with...

CVE-2023-5823

Cross-Site Request Forgery CSRF vulnerability in ThemeKraft TK Google Fonts GDPR Compliant plugin = 2.2.11 versions...

CVE-2023-5823

Cross-Site Request Forgery CSRF vulnerability in ThemeKraft TK Google Fonts GDPR Compliant plugin = 2.2.11 versions...

CVE-2023-5823

CVE-2023-5823 is a CSRF vulnerability in the TK Google Fonts GDPR Compliant WordPress plugin, affecting versions up to and including 2.2.11. The issue allows unauthenticated attackers to exploit Cross-Site Request Forgery; CVSSv3.1 base score is 8.8 (HIGH) per NVD/audit sources, with client impac...

CVE-2023-5823 WordPress TK Google Fonts GDPR Compliant Plugin <= 2.2.11 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in ThemeKraft TK Google Fonts GDPR Compliant plugin = 2.2.11 versions...

WordPress Plugin TK Google Fonts GDPR Compliant Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin TK Google Fonts GDPR...

WordPress TK Google Fonts GDPR Compliant Plugin <= 2.2.11 is vulnerable to Cross Site Request Forgery (CSRF)

Software TK Google Fonts GDPR Compliant Type Plugin Vulnerable versions = 2.2.11 Fixed in 2.2.12 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-5823 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 766d6e0e24c8 Credits Mik...

batiparbarrette.com Cross Site Scripting vulnerability OBB-3575276

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

WordPress Anti-Spam by Fullworks : GDPR Compliant Spam Protection Plugin < 1.3.10 is vulnerable to Cross Site Scripting (XSS)

Software Anti-Spam by Fullworks : GDPR Compliant Spam Protection Type Plugin Vulnerable versions 1.3.10 Fixed in 1.3.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Fullworks Plugins PSID 667570386c1...

WordPress TK Google Fonts GDPR Compliant Plugin <= 2.2.7 is vulnerable to Broken Access Control

Software TK Google Fonts GDPR Compliant Type Plugin Vulnerable versions = 2.2.7 Fixed in 2.2.8 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE N/A Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID a16b5d1818ee Credits Unknown Required...

What Stricter Data Privacy Laws Mean for Your Cybersecurity Policies

For today's businesses data privacy is already a big headache, and with modern privacy laws expanding to more of the world's population, regulatory compliance is on track to become a more complicated, high-stakes process touching on every aspect of an organization. In fact, Gartner predicts that ...

WordPress TK Google Fonts GDPR Compliant plugin <= 2.2.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress TK Google Fonts GDPR Compliant plugin versions = 2.2.0. Solution Update the WordPress TK Google Fonts GDPR Compliant plugin to the latest available version at least 2.2.1...

WordPress TK Google Fonts GDPR Compliant plugin <= 2.2.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress TK Google Fonts GDPR Compliant plugin versions = 2.2.0. Solution Update the WordPress TK Google Fonts GDPR Compliant plugin to the latest available version at least 2.2.1...