Lucene search
K

29 matches found

OSV
OSV
added 2019/08/30 1:15 p.m.2 views

CVE-2019-15816

The wp-private-content-plus plugin before 2.0 for WordPress has no protection against option changes via savesettingspage and other save functions...

7.5CVSS7.1AI score0.01999EPSS
Exploits1References3
NVD
NVD
added 2019/08/30 1:15 p.m.10 views

CVE-2019-15816

The wp-private-content-plus plugin before 2.0 for WordPress has no protection against option changes via savesettingspage and other save functions...

7.5CVSS7.7AI score0.01999EPSS
Exploits1References3
Prion
Prion
added 2019/08/30 1:15 p.m.10 views

Design/Logic Flaw

The wp-private-content-plus plugin before 2.0 for WordPress has no protection against option changes via savesettingspage and other save functions...

5CVSS7.7AI score0.01999EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2019/08/30 12:28 p.m.63 views

CVE-2019-15816

The CVE-2019-15816 entry concerns the WordPress plugin wp-private-content-plus. Connected sources confirm that versions before 2.0 allow option changes via save_settings_page and other save_ functions without proper protection, enabling unauthenticated modification of plugin options. The vulnerab...

7.5CVSS7.6AI score0.01999EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2019/08/30 12:28 p.m.19 views

CVE-2019-15816

The wp-private-content-plus plugin before 2.0 for WordPress has no protection against option changes via savesettingspage and other save functions...

7.7AI score0.01999EPSS
Exploits1References3
CNVD
CNVD
added 2019/08/29 12:0 a.m.3 views

WordPress stops-core-theme-and-plugin-updates plugin has unspecified vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. stops-core-theme-and-plugin-updates is an update management plugin that is used to manage updates to WordPress and its related plugins...

4.3CVSS6.7AI score0.00885EPSS
Exploits0References1
OSV
OSV
added 2019/08/27 1:15 p.m.4 views

CVE-2019-15650

The stops-core-theme-and-plugin-updates plugin before 8.0.5 for WordPress has insufficient restrictions on option changes such as disabling unattended theme updates because of a nonce check error...

4.3CVSS5.8AI score0.00885EPSS
Exploits0References2
Patchstack
Patchstack
added 2019/08/12 12:0 a.m.6 views

WordPress Simple 301 Redirects Addon Bulk Uploader plugin <= 1.2.4 - Unauthenticated option changes and other security issues

Unauthenticated option changes and other security issues found by Jerome Bruandet Nintechnet in WordPress Simple 301 Redirects Addon Bulk Uploader plugin versions = 1.2.4. Solution Update the WordPress Simple 301 Redirects Addon Bulk Uploader plugin to the latest available version at least 1.2.5...

2.6AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2019/08/10 12:0 a.m.13 views

Simple 301 Redirects Addon Bulk Uploader <= 1.2.4 - Multiple Issues

Unauthenticated option changes vulnerability that could allow an attacker to redirect all pages and posts of the blog to a malicious website, as well as an authenticated options export/deletion vulnerability...

5.8CVSS3AI score0.01467EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder