Lucene search
K

34 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-46367

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00214EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-34039

Malicious code in bioql PyPI...

4.3CVSS6.1AI score0.00406EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-34040

Malicious code in bioql PyPI...

4.3CVSS6.1AI score0.00454EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:13 a.m.12 views

CVE-2023-41876

Cross-Site Request Forgery CSRF vulnerability in Hardik Kalathiya WP Gallery Metabox plugin = 1.0.0 versions...

8.8CVSS7.1AI score0.00214EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:25 a.m.9 views

CVE-2023-2561

The Gallery Metabox for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the galleryremove function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to modify galleries attached to posts and pages with th...

4.3CVSS6.5AI score0.00406EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:50 a.m.7 views

CVE-2023-2562

The Gallery Metabox for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the refreshmetabox function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to obtain a list of images attached to a post...

4.3CVSS6.5AI score0.00454EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:51 p.m.7 views

CVE-2022-47134

Cross-Site Request Forgery CSRF vulnerability in Bill Erickson Gallery Metabox plugin = 1.5 versions...

8.8CVSS7.1AI score0.00271EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2023/10/12 12:0 a.m.8 views

WP Gallery Metabox <= 1.0.0 - Settings Update via CSRF

Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

8.8CVSS6.4AI score0.00214EPSS
Exploits0
OSV
OSV
added 2023/10/10 9:15 a.m.3 views

CVE-2023-41876

Cross-Site Request Forgery CSRF vulnerability in Hardik Kalathiya WP Gallery Metabox plugin = 1.0.0 versions...

8.8CVSS7.3AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/10 8:53 a.m.14 views

CVE-2023-41876 WordPress WP Gallery Metabox Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Hardik Kalathiya WP Gallery Metabox plugin = 1.0.0 versions...

4.3CVSS7.1AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2023/10/10 8:53 a.m.28 views

CVE-2023-41876

CVE-2023-41876 : Cross-Site Request Forgery in the WordPress plugin WP Gallery Metabox (vendor: Hardik Kalathiya) affecting versions

8.8CVSS6.4AI score0.00214EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/10/10 12:0 a.m.2 views

WordPress Plugin wp-gallery-metabox Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

8.8CVSS6.5AI score0.00214EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.13 views

WordPress WP Gallery Metabox Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Gallery Metabox Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-41876 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d78bcbd51e63 Credits Skalucy Required...

8.8CVSS7AI score0.00214EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/07/12 5:15 a.m.3 views

CVE-2023-2562

The Gallery Metabox for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the refreshmetabox function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to obtain a list of images attached to a post...

4.3CVSS6.8AI score0.00454EPSS
Exploits0References3
OSV
OSV
added 2023/07/12 5:15 a.m.5 views

CVE-2023-2562

The Gallery Metabox for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the refreshmetabox function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to obtain a list of images attached to a post...

4.3CVSS7.3AI score0.00454EPSS
Exploits0References2
NVD
NVD
added 2023/07/12 5:15 a.m.9 views

CVE-2023-2561

The Gallery Metabox for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the galleryremove function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to modify galleries attached to posts and pages with th...

4.3CVSS4.3AI score0.00406EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/07/12 5:15 a.m.2 views

CVE-2023-2561

The Gallery Metabox for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the galleryremove function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to modify galleries attached to posts and pages with th...

4.3CVSS6.8AI score0.00406EPSS
Exploits0References3
Prion
Prion
added 2023/07/12 5:15 a.m.17 views

Design/Logic Flaw

The Gallery Metabox for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the galleryremove function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to modify galleries attached to posts and pages with th...

4CVSS4.5AI score0.00406EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/07/12 5:15 a.m.18 views

Design/Logic Flaw

The Gallery Metabox for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the refreshmetabox function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to obtain a list of images attached to a post...

4CVSS4.4AI score0.00454EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/07/12 4:38 a.m.39 views

CVE-2023-2561

CVE-2023-2561 affects the WordPress plugin Gallery Metabox (versions

4.3CVSS5.2AI score0.00406EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder