92 matches found
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Pixelgrade PixTypes plugin = 1.4.14 versions...
CVE-2023-23704
CVE-2023-23704 is a CSRF vulnerability in the WordPress plugin Pixelgrade Comments Ratings affecting versions up to 1.1.6 . The vulnerability is described across sources as Cross-Site Request Forgery with unauthenticated access, enabling CSRF actions on sites using the plugin. Affected product: P...
CVE-2023-23704 WordPress Comments Ratings Plugin <= 1.1.6 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Pixelgrade Comments Ratings plugin = 1.1.6 versions...
CVE-2023-23704 WordPress Comments Ratings Plugin <= 1.1.6 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Pixelgrade Comments Ratings plugin = 1.1.6 versions...
CVE-2023-25487
CVE-2023-25487 affects the WordPress Pixelgrade PixTypes plugin, versions
PT-2023-19143 · Pixelgrade · Pixelgrade Comments Ratings Plugin
Name of the Vulnerable Software and Affected Versions: Pixelgrade Comments Ratings plugin versions 1.1.6 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actio...
PT-2023-20105 · Pixelgrade · Pixtypes
Name of the Vulnerable Software and Affected Versions: Pixelgrade PixTypes plugin versions prior to 1.4.14 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web...
CVE-2022-46844
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in PixelGrade PixFields plugin = 0.7.0 versions...
CVE-2022-46844
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in PixelGrade PixFields plugin = 0.7.0 versions...
Cross site scripting
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in PixelGrade PixFields plugin = 0.7.0 versions...
CVE-2022-46844
CVE-2022-46844 involves WordPress PixelGrade PixFields plugin and is a stored XSS affecting versions <= 0.7.0, exploitable by contributors with authentication. The initial description and multiple connected sources confirm an XSS in PixFields with input stored and reflected in outputs. Public ...
PT-2023-15072 · Pixelgrade · Pixfields
Name of the Vulnerable Software and Affected Versions: PixelGrade PixFields plugin versions 0.7.0 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited by contributors or users with higher authentication levels. There...