8 matches found
EUVD-2020-24188
Malware in sbrugna...
CVE-2020-36747
The Lightweight Sidebar Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.4. This is due to missing or incorrect nonce validation on the metaboxsave function. This makes it possible for unauthenticated attackers to save metbox data via ...
Cross site request forgery (csrf)
The Lightweight Sidebar Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.4. This is due to missing or incorrect nonce validation on the metaboxsave function. This makes it possible for unauthenticated attackers to save metbox data via ...
CVE-2020-36747
CVE-2020-36747 : The Lightweight Sidebar Manager WordPress plugin is vulnerable to Cross-Site Request Forgery due to missing/incorrect nonce validation in the metabox_save() function, affecting versions up to 1.1.4. An unauthenticated attacker could craft a request that, if a site admin visits it...
CVE-2020-36747 Lightweight Sidebar Manager <= 1.1.4 - Cross-Site Request Forgery Bypass
The Lightweight Sidebar Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.4. This is due to missing or incorrect nonce validation on the metaboxsave function. This makes it possible for unauthenticated attackers to save metbox data via ...
WordPress Plugin Lightweight Sidebar Manager 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
PT-2023-11887 · WordPress · Lightweight Sidebar Manager
Name of the Vulnerable Software and Affected Versions: Lightweight Sidebar Manager plugin for WordPress versions up to, and including, 1.1.4 Description: The issue is due to missing or incorrect nonce validation on the metabox save function, making it possible for unauthenticated attackers to sav...
WordPress Lightweight Sidebar Manager <= 1.1.3 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability found by Jerome Bruandet NinTechNet in WordPress Lightweight Sidebar Manager versions = 1.1.3. Solution Update the WordPress Lightweight Sidebar Manager to the latest available version at least 1.1.4...