Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-1904

Malware in sbrugna...

8.8CVSS8.8AI score0.00609EPSS
Exploits1References2
CNVD
CNVD
added 2018/06/28 12:0 a.m.3 views

WordPress Metronet Tag Manager Cross-Site Request Forgery Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Metronet Tag Manager is used in one of the tracking code manager plugin. A cross-site request forgery vulnerabilit...

8.8CVSS8.7AI score0.00609EPSS
Exploits1References1
Prion
Prion
added 2018/06/26 4:29 p.m.11 views

Cross site request forgery (csrf)

Metronet Tag Manager version 1.2.7 contains a Cross ite Request Forgery CSRF vulnerability in Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can result in allows anybody to do almost anything an admin can. This attack appear to be exploitable via Logged in user must...

6.8CVSS8.8AI score0.00609EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/06/26 4:29 p.m.3 views

CVE-2018-1000506

Metronet Tag Manager version 1.2.7 contains a Cross ite Request Forgery CSRF vulnerability in Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can result in allows anybody to do almost anything an admin can. This attack appear to be exploitable via Logged in user must...

8.8CVSS5.7AI score0.00609EPSS
Exploits1References1
NVD
NVD
added 2018/06/26 4:29 p.m.11 views

CVE-2018-1000506

Metronet Tag Manager version 1.2.7 contains a Cross ite Request Forgery CSRF vulnerability in Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can result in allows anybody to do almost anything an admin can. This attack appear to be exploitable via Logged in user must...

8.8CVSS8.8AI score0.00609EPSS
Exploits1References1
CVE
CVE
added 2018/06/26 4:0 p.m.41 views

CVE-2018-1000506

The issue affects the WordPress plugin Metronet Tag Manager, version 1.2.7. It contains a Cross-Site Request Forgery (CSRF) vulnerability on the Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can allow a logged-in attacker to perform administrator actions. The vulnerab...

8.8CVSS8.7AI score0.00609EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/06/26 4:0 p.m.14 views

CVE-2018-1000506

Metronet Tag Manager version 1.2.7 contains a Cross ite Request Forgery CSRF vulnerability in Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can result in allows anybody to do almost anything an admin can. This attack appear to be exploitable via Logged in user must...

8.9AI score0.00609EPSS
Exploits1References1
Patchstack
Patchstack
added 2018/05/17 12:0 a.m.11 views

WordPress Metronet Tag Manager plugin <=1.2.7 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability found by Tom Adams dxw in WordPress Metronet Tag Manager plugin versions =1.2.7. Solution Update the WordPress Metronet Tag Manager plugin to the latest available version at least 1.2.9...

3.5AI score
Exploits0References1Affected Software1
0day.today
0day.today
added 2018/05/16 12:0 a.m.60 views

WordPress Metronet Tag Manager 1.2.7 Plugin - Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Press submit on a page containing the following HTML snippet: alert1" !-- In a real attack, the form can be made to autosubmit so the victim only has to follow a link. Mitigations ================ Upgrade to version 1.2.9 or later...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2018/05/16 12:0 a.m.25 views

WordPress Plugin Metronet Tag Manager 1.2.7 - Cross-Site Request Forgery

WordPress Plugin Metronet Tag Manager 1.2.7 - Cross-Site Request Forgery Press submit on a page containing the following HTML snippet: alert1" !-- In a real attack, the form can be made to autosubmit so the victim only has to follow a link. Mitigations ================ Upgrade to version 1.2.9 or...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/05/16 12:0 a.m.30 views

WordPress Plugin Metronet Tag Manager 1.2.7 - Cross-Site Request Forgery

Press submit on a page containing the following HTML snippet: alert1" !-- In a real attack, the form can be made to autosubmit so the victim only has to follow a link. Mitigations ================ Upgrade to version 1.2.9 or later. Disclosure policy ================ dxw believes in respon...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/05/15 12:0 a.m.28 views

Metronet Tag Manager 1.2.7 Cross Site Request Forgery

Details ================ Software: Metronet Tag Manager Version: 1.2.7 Homepage: https://wordpress.org/plugins/metronet-tag-manager/ Advisory report: https://advisories.dxw.com/advisories/csrf-metronet-tag-manager/ CVE: Awaiting assignment CVSS: 5.8 Medium; AV:N/AC:M/Au:N/C:P/I:P/A:N Description...

0.3AI score
Exploits0
WPVulnDB
WPVulnDB
added 2018/05/15 12:0 a.m.11 views

Metronet Tag Manager <= 1.2.7 - Cross-Site Request Forgery (CSRF)

The Metronet Tag Manager WordPress plugin was affected by a Cross-Site Request Forgery CSRF security vulnerability...

3.2AI score
Exploits0References3Affected Software1
Rows per page
Query Builder