24 matches found
CVE-2023-29235
Cross-Site Request Forgery CSRF vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
EUVD-2022-50350
Malicious code in bioql PyPI...
EUVD-2023-32812
Malicious code in bioql PyPI...
CVE-2022-47590
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
Maintenance Switch <= 1.5.2 - Theme Files Creation/Deletion via CSRF
Description The plugin does not have CSRF checks when creating and deleting theme files as well as reseting settings, which could allow attackers to make logged in admins perform such actions via CSRF attacks...
CVE-2023-29235
Cross-Site Request Forgery CSRF vulnerability in Fugu Design Maintenance Switch maintenance-switch allows Cross Site Request Forgery.This issue affects Maintenance Switch: from n/a through = 1.7.1...
CVE-2023-29235
Cross-Site Request Forgery CSRF vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
CVE-2023-29235 WordPress Maintenance Switch plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Fugu Design Maintenance Switch maintenance-switch allows Cross Site Request Forgery.This issue affects Maintenance Switch: from n/a through = 1.7.1...
CVE-2023-29235 WordPress Maintenance Switch Plugin <= 1.5.2 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
CVE-2023-29235
CVE-2023-29235 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Maintenance Switch (Fugu Maintenance Switch) affecting versions ≤ 1.5.2. The issue enables CSRF via the admin_action_request flow, with unauthenticated access (per patchstack and Red Hat references), allow...
PT-2023-22213 · WordPress · Fugu Maintenance Switch
Name of the Vulnerable Software and Affected Versions: Fugu Maintenance Switch plugin versions = 1.5.2 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...
WordPress Plugin maintenance-switch Cross-Site Request Forgery Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
WordPress Maintenance Switch Plugin <= 1.5.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Maintenance Switch Type Plugin Vulnerable versions = 1.5.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-29235 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID bc20c4d49d47 Credits Elliot Required...
CVE-2022-47590
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
CVE-2022-47590
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
CVE-2022-47590
CVE-2022-47590 affects the WordPress Maintenance Switch plugin (versions
CVE-2022-47590 WordPress Maintenance Switch Plugin <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...
CVE-2022-47590 WordPress Maintenance Switch Plugin <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Fugu Maintenance Switch plugin = 1.5.2 versions...