CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36 matches found

RedhatCVE•added 2025/05/23 5:38 a.m.•2 views

CVE-2023-26014

Cross-Site Request Forgery CSRF vulnerability in Tim Eckel Minify HTML plugin = 2.1.7 vulnerability...

8.8CVSS6.8AI score0.00106EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 4:23 a.m.•7 views

CVE-2024-12579 Minify HTML <= 2.1.10 - - Regular Expressions Denial of Service

The Minify HTML plugin for WordPress is vulnerable to Regular Expression Denial of Service ReDoS in all versions up to, and including, 2.1.10. This is due to processing user-supplied input as a regular expression. This makes it possible for unauthenticated attackers to create comments that can...

5.3CVSS6.7AI score0.00485EPSS

Exploits0References2

Cvelist•added 2024/12/13 4:23 a.m.•14 views

CVE-2024-12579 Minify HTML <= 2.1.10 - - Regular Expressions Denial of Service

5.3CVSS0.00485EPSS

Exploits0References2

CVE•added 2024/12/13 4:23 a.m.•42 views

CVE-2024-12579

The CVE-2024-12579 entry concerns the Minify HTML plugin for WordPress. According to Red Hat and Wordfence sources, the vulnerability is a Regular Expression Denial of Service (ReDoS) caused by processing user-supplied input as a regular expression. It affects all versions up to and including 2.1...

5.3CVSS5.2AI score0.00485EPSS

Exploits0References2

Positive Technologies•added 2024/12/13 12:0 a.m.•2 views

PT-2024-17663 · WordPress · Minify Html

Name of the Vulnerable Software and Affected Versions: Minify HTML plugin for WordPress versions up to, and including, 2.1.10 Description: The issue is related to a Regular Expression Denial of Service ReDoS vulnerability. This vulnerability arises from the plugin's processing of user-supplied...

5.3CVSS7AI score0.00485EPSS

Exploits0References7

CNNVD•added 2024/12/13 12:0 a.m.•1 views

WordPress plugin Minify HTML 资源管理错误漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A resource manageme...

5.3CVSS8.3AI score0.00485EPSS

Exploits0References2

Patchstack•added 2024/12/12 6:23 p.m.•2 views

WordPress Minify HTML plugin <= 2.1.10 - Regular Expressions Denial of Service vulnerability

Regular Expressions Denial of Service vulnerability discovered by Pierre Rudloff in WordPress Plugin Minify HTML versions = 2.1.10...

5.3CVSS6.9AI score0.00485EPSS

Exploits0References1Affected Software1

NVD•added 2023/05/23 3:15 p.m.•10 views

CVE-2023-26014

Cross-Site Request Forgery CSRF vulnerability in Tim Eckel Minify HTML plugin = 2.1.7 vulnerability...

8.8CVSS5.8AI score0.00106EPSS

Exploits0References1

OSV•added 2023/05/23 3:15 p.m.•1 views

CVE-2023-26014

Cross-Site Request Forgery CSRF vulnerability in Tim Eckel Minify HTML plugin = 2.1.7 vulnerability...

8.8CVSS7.3AI score

Exploits0References1

Prion•added 2023/05/23 3:15 p.m.•20 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Tim Eckel Minify HTML plugin = 2.1.7 vulnerability...

6.8CVSS8.7AI score0.00106EPSS

Exploits0References1Affected Software1

CVE•added 2023/05/23 2:36 p.m.•52 views

CVE-2023-26014

CVE-2023-26014 concerns the WordPress Minify HTML Plugin, affected in versions <= 2.1.7. The vulnerability is CSRF (Cross-Site Request Forgery) that can be exploited without authentication. Patchstack’s entry states the issue is fixed in version 2.1.8. The Initial Description confirms the CSRF...

8.8CVSS6.5AI score0.00106EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/05/23 2:36 p.m.•19 views

CVE-2023-26014 WordPress Minify HTML Plugin <= 2.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Tim Eckel Minify HTML plugin = 2.1.7 vulnerability...

4.3CVSS8.9AI score0.00106EPSS

Exploits0References1

Vulnrichment•added 2023/05/23 2:36 p.m.•7 views

CVE-2023-26014 WordPress Minify HTML Plugin <= 2.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Tim Eckel Minify HTML plugin = 2.1.7 vulnerability...

4.3CVSS6.9AI score0.00106EPSS

Exploits0References1

CNNVD•added 2023/05/23 12:0 a.m.•0 views

WordPress plugin Minify HTML 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

8.8CVSS8.1AI score0.00106EPSS

Exploits0References3

Positive Technologies•added 2023/05/23 12:0 a.m.•2 views

PT-2023-20426 · Unknown · Tim Eckel Minify Html Plugin

Name of the Vulnerable Software and Affected Versions: Tim Eckel Minify HTML plugin versions = 2.1.7 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...

8.8CVSS8.7AI score0.00106EPSS

Exploits0References4

Patchstack•added 2023/02/21 12:0 a.m.•8 views

WordPress Minify HTML Plugin <= 2.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Minify HTML Type Plugin Vulnerable versions = 2.1.7 Fixed in 2.1.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-26014 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 94b850fef175 Credits Mika Required privilege...

8.8CVSS6.8AI score0.00106EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by