10 matches found
EUVD-2023-41817
Malicious code in bioql PyPI...
CVE-2023-37990
Cross-Site Request Forgery CSRF vulnerability in Mike Perelink Pro plugin = 2.1.4 versions...
Perelink Pro <= 2.1.4 - Settings Update via CSRF
Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2023-37990
Cross-Site Request Forgery CSRF vulnerability in Mike Perelink Pro plugin = 2.1.4 versions...
CVE-2023-37990 WordPress Perelink Pro Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Mike Perelink Pro plugin = 2.1.4 versions...
CVE-2023-37990
CVE-2023-37990 — Cross-Site Request Forgery in WordPress Perelink Pro plugin, affected versions 2.1.4) when available; otherwise apply CSRF protection measures. Overall, the CVE is corroborated across multiple feeds in the Connected documents, but no definitive patched version is confirmed here.
CVE-2023-37990 WordPress Perelink Pro Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Mike Perelink Pro plugin = 2.1.4 versions...
PT-2023-26235 · Unknown · Mike Perelink Pro
Name of the Vulnerable Software and Affected Versions: Mike Perelink Pro plugin versions = 2.1.4 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a web application that the user is authenticate...
WordPress Plugin perelink Cross-Site Request Forgery Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...
WordPress Perelink Pro Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Perelink Pro Type Plugin Vulnerable versions = 2.1.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-37990 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ac9e9c6c77a9 Credits Skalucy Required privile...