WordPress JetTabs Plugin <= 2.1.25.1 is vulnerable to Broken Access Control

Software JetTabs Type Plugin Vulnerable versions = 2.1.25.1 Fixed in 2.1.25.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48761 Patch priority Medium CVSS severity Medium 6.3 Developer Crocoblock PSID 05f1f67c4d40 Credits Rafie Muhammad Patchstack...

WordPress JetProductGallery Plugin <= 2.1.13.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software JetProductGallery Type Plugin Vulnerable versions = 2.1.13.1 Fixed in 2.1.13.2 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-48762 Patch priority Low CVSS severity Low 6.3 Developer Crocoblock PSID 150144abe99d Credits Rafie Muhammad...

WordPress Review Widgets for Szallas.hu Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Review Widgets for Szallas.hu Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID 1d37efe52aa3 Credits Rafie Muhammad Patchsta...

WordPress Widgets for Amazon Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Widgets for Amazon Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID d4ed9c5c2f5b Credits Rafie Muhammad Patchstack...

WordPress WP Tripadvisor Review Widgets Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software WP Tripadvisor Review Widgets Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID bf86f8d389e5 Credits Rafie Muhammad Patchsta...

WordPress Widgets for Airbnb Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Widgets for Airbnb Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID 17c7b7de54d5 Credits Rafie Muhammad Patchstack...

WordPress Widgets for Foursquare Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Widgets for Foursquare Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID b444fc328eac Credits Rafie Muhammad...

WordPress JetCompareWishlist Plugin <= 1.5.5.1 is vulnerable to Broken Access Control

Software JetCompareWishlist Type Plugin Vulnerable versions = 1.5.5.1 Fixed in 1.5.5.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID c645a5e87be7 Credits Rafie Muhammad...

WordPress JetElements For Elementor Plugin <= 2.6.13 is vulnerable to Broken Access Control

Software JetElements For Elementor Type Plugin Vulnerable versions = 2.6.13 Fixed in 2.6.13.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID e51e2e2e22ba Credits Rafie Muhammad...

WordPress JetSearch Plugin <= 3.1.2 is vulnerable to Broken Access Control

Software JetSearch Type Plugin Vulnerable versions = 3.1.2 Fixed in 3.1.2.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48761 Patch priority Medium CVSS severity Medium 6.3 Developer Crocoblock PSID 7a898b33b365 Credits Rafie Muhammad Patchstack Requir...

WordPress JetPopup Plugin <= 2.0.2 is vulnerable to Broken Access Control

Software JetPopup Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.0.2.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48761 Patch priority Medium CVSS severity Medium 6.3 Developer Crocoblock PSID 023e24c3cead Credits Rafie Muhammad Patchstack Require...

WordPress affiliate-toolkit Plugin <= 3.4.3 is vulnerable to Cross Site Scripting (XSS)

Software affiliate-toolkit Type Plugin Vulnerable versions = 3.4.3 Fixed in 3.4.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-46086 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2445752d85a7 Credits LEE SE HYOUNG...

WordPress JetBlocks For Elementor Plugin <= 1.3.8 is vulnerable to Broken Access Control

Software JetBlocks For Elementor Type Plugin Vulnerable versions = 1.3.8 Fixed in 1.3.8.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 51b603280bfd Credits Rafie Muhammad...

WordPress Widgets for Wordpress Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Widgets for Wordpress Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID 382b3841f916 Credits Rafie Muhammad Patchsta...

WordPress Widgets for Yelp Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Widgets for Yelp Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID 323b86ec1718 Credits Rafie Muhammad Patchstack...

WordPress JetTricks Plugin <= 1.4.6.1 is vulnerable to Broken Access Control

Software JetTricks Type Plugin Vulnerable versions = 1.4.6.1 Fixed in 1.4.6.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 1a049ca5510e Credits Rafie Muhammad Patchstack...

WordPress Widgets for Capterra Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload

Software Widgets for Capterra Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID 7376afb72618 Credits Rafie Muhammad Patchstac...

WordPress JetWooBuilder Plugin <= 2.1.7.2 is vulnerable to Broken Access Control

Software JetWooBuilder Type Plugin Vulnerable versions = 2.1.7.2 Fixed in 2.1.7.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 8b8b6528e3fb Credits Rafie Muhammad Patchstack...

WordPress JetTabs Plugin <= 2.1.25.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software JetTabs Type Plugin Vulnerable versions = 2.1.25.1 Fixed in 2.1.25.2 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-48762 Patch priority Low CVSS severity Low 6.3 Developer Crocoblock PSID 6d9f8f2ea4be Credits Rafie Muhammad Patchstack...

WordPress JetCompareWishlist Plugin <= 1.5.5.1 is vulnerable to Broken Access Control

Software JetCompareWishlist Type Plugin Vulnerable versions = 1.5.5.1 Fixed in 1.5.5.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48761 Patch priority Medium CVSS severity Medium 6.3 Developer Crocoblock PSID 4465ac899143 Credits Rafie Muhammad...