24 matches found
CVE-2021-24767
The Redirect 404 Error Page to Homepage or Custom Page with Logs WordPress plugin before 1.7.9 does not check for CSRF when deleting logs, which could allow attacker to make a logged in admin delete them via a CSRF attack...
WordPress 插件跨站请求伪造漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site request forgery vulnerability...
WordPress Redirect 404 Error Page to Homepage or Custom Page with Logs plugin <= 1.7.8 - Log Deletion via Cross-Site Request Forgery (CSRF) vulnerability
Log Deletion via Cross-Site Request Forgery CSRF vulnerability discovered by apple502j in WordPress Redirect 404 Error Page to Homepage or Custom Page with Logs plugin versions = 1.7.8. Solution Update the WordPress Redirect 404 Error Page to Homepage or Custom Page with Logs plugin to the latest...
MyBB IP History Logs Plugin 1.0.2 - Cross-Site Scripting
Exploit Title: MyBB IP History Logs Plugin 1.0.2 - Cross-Site Scripting Date: 1/25/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=1213 Version: 1.0.2 Tested on: Ubuntu 18.04 CVE: CVE-2019-6979 1. Description: This plugin...