Lucene search
+L

48 matches found

Prion
Prion
added 2022/11/17 10:15 p.m.19 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in WPML Multilingual CMS premium plugin = 4.5.13 on WordPress...

6.8CVSS8.8AI score0.00298EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/11/17 10:15 p.m.22 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in WPML Multilingual CMS premium plugin = 4.5.13 on WordPress...

4.3CVSS4.8AI score0.00261EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/11/17 10:15 p.m.20 views

Improper access control

Broken Access Control vulnerability in WPML Multilingual CMS premium plugin = 4.5.10 on WordPress allows users with a subscriber or higher user role to change plugin settings selected language for legacy widgets, the default behavior for media content...

4CVSS4.6AI score0.00503EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/11/17 9:59 p.m.32 views

CVE-2022-38461 WordPress WPML Multilingual CMS premium plugin <= 4.5.10 - Broken Access Control vulnerability

Broken Access Control vulnerability in WPML Multilingual CMS premium plugin = 4.5.10 on WordPress allows users with a subscriber or higher user role to change plugin settings selected language for legacy widgets, the default behavior for media content...

5.4CVSS5.7AI score0.00503EPSS
Exploits0References1
CVE
CVE
added 2022/11/17 9:59 p.m.182 views

CVE-2022-38461

The CVE-2022-38461 entry affects the WPML Multilingual CMS premium plugin for WordPress (versions

5.4CVSS4.6AI score0.00503EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/17 9:58 p.m.7 views

CVE-2022-45071 WordPress WPML Multilingual CMS premium plugin <= 4.5.13 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WPML Multilingual CMS premium plugin = 4.5.13 on WordPress...

5.4CVSS6.5AI score0.00298EPSS
Exploits0References1
CVE
CVE
added 2022/11/17 9:58 p.m.86 views

CVE-2022-45071

The CVE-2022-45071 entry describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress WPML Multilingual CMS premium plugin up to version 4.5.13. The root cause identified across multiple sources is missing CSRF protections in certain areas (e.g., actions like translation-job statu...

8.8CVSS7.1AI score0.00298EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/11/17 9:58 p.m.41 views

CVE-2022-45071 WordPress WPML Multilingual CMS premium plugin <= 4.5.13 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WPML Multilingual CMS premium plugin = 4.5.13 on WordPress...

5.4CVSS9AI score0.00298EPSS
Exploits0References1
CVE
CVE
added 2022/11/17 9:57 p.m.75 views

CVE-2022-45072

CVE-2022-45072 affects WPML Multilingual CMS premium plugin

4.3CVSS5.2AI score0.00261EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/11/17 12:0 a.m.5 views

WordPress plugin Multilingual CMS 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS7.8AI score0.00298EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/11/17 12:0 a.m.5 views

WordPress plugin Multilingual CMS 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS5AI score0.00261EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/11/17 12:0 a.m.7 views

PT-2022-27400 · WordPress · Wpml Multilingual Cms

Name of the Vulnerable Software and Affected Versions: WPML Multilingual CMS premium plugin versions = 4.5.13 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a web application that the user is...

4.3CVSS4.4AI score0.00261EPSS
Exploits0References4
Patchstack
Patchstack
added 2022/11/09 12:0 a.m.29 views

WordPress WPML Multilingual CMS premium plugin <= 4.5.13 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability leading to status change of translation job discovered by Dave Jong Patchstack in WordPress WPML Multilingual CMS premium plugin versions = 4.5.13. Solution Update the WordPress Multilingual CMS plugin to the latest available version at least 4.5.14...

4.3CVSS3.1AI score0.00261EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2022/11/09 12:0 a.m.25 views

WordPress WPML Multilingual CMS premium plugin <= 4.5.10 - Broken Access Control vulnerability

Broken Access Control vulnerability leading to status change of translation job discovered by Dave Jong Patchstack in the WordPress WPML Multilingual CMS premium plugin versions = 4.5.10. Solution Update the WordPress Multilingual CMS plugin to the latest available version at least 4.5.11...

4.3CVSS3.2AI score0.00503EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2022/11/09 12:0 a.m.21 views

WordPress WPML Multilingual CMS premium plugin <= 4.5.10 - Broken Access Control vulnerability

Broken Access Control vulnerability leading to plugin settings change selected language for legacy widgets can be changed, and default behavior for media content can be changed discovered by Dave Jong in WordPress WPML Multilingual CMS premium plugin versions = 4.5.10. Solution Update the WordPre...

5.4CVSS2.8AI score0.00503EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2022/11/09 12:0 a.m.23 views

WordPress WPML Multilingual CMS premium plugin <= 4.5.13 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability discovered by Dave Jong Patchstack in WordPress WPML Multilingual CMS premium plugin versions = 4.5.13 Solution Update the WordPress Multilingual CMS plugin to the latest available version at least 4.5.14...

8.8CVSS3.5AI score0.00298EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2020/03/17 12:0 a.m.5 views

WordPress sitepress-multilingual-cms cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. sitepress-multilingual-cms WPML plugin is a website multilingual support plugin used in it. A cross-site request forgery vulnerability...

8.8CVSS6.7AI score0.01705EPSS
Exploits1References1
NVD
NVD
added 2020/03/14 2:15 p.m.31 views

CVE-2020-10568

The sitepress-multilingual-cms WPML plugin before 4.3.7-b.2 for WordPress has CSRF due to a loose comparison. This leads to remote code execution in includes/class-wp-installer.php via a series of requests that leverage unintended comparisons of integers to strings...

8.8CVSS9AI score0.01705EPSS
Exploits1References2
OSV
OSV
added 2020/03/14 2:15 p.m.5 views

CVE-2020-10568

The sitepress-multilingual-cms WPML plugin before 4.3.7-b.2 for WordPress has CSRF due to a loose comparison. This leads to remote code execution in includes/class-wp-installer.php via a series of requests that leverage unintended comparisons of integers to strings...

8.8CVSS7.8AI score0.01705EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/03/14 1:50 p.m.29 views

CVE-2020-10568

The sitepress-multilingual-cms WPML plugin before 4.3.7-b.2 for WordPress has CSRF due to a loose comparison. This leads to remote code execution in includes/class-wp-installer.php via a series of requests that leverage unintended comparisons of integers to strings...

9AI score0.01705EPSS
Exploits1References2
Rows per page
Query Builder