17 matches found
EUVD-2021-34250
Malicious code in bioql PyPI...
EUVD-2025-4347
Malicious code in bioql PyPI...
CVE-2021-4423
The RAYS Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.2. This is due to missing or incorrect nonce validation on the rsgdinsertupdate function. This makes it possible for unauthenticated attackers to update post fields via a forged...
CVE-2025-27317
Cross-Site Request Forgery CSRF vulnerability in IT-RAYS RAYS Grid rays-grid allows Cross Site Request Forgery.This issue affects RAYS Grid: from n/a through = 1.3.1...
CVE-2025-27317
Cross-Site Request Forgery CSRF vulnerability in IT-RAYS RAYS Grid rays-grid allows Cross Site Request Forgery.This issue affects RAYS Grid: from n/a through = 1.3.1...
WordPress RAYS Grid Plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin RAYS Grid versions = 1.3.1...
CVE-2025-27317 WordPress RAYS Grid Plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in IT-RAYS RAYS Grid rays-grid allows Cross Site Request Forgery.This issue affects RAYS Grid: from n/a through = 1.3.1...
CVE-2025-27317 WordPress RAYS Grid Plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in IT-RAYS RAYS Grid rays-grid allows Cross Site Request Forgery.This issue affects RAYS Grid: from n/a through = 1.3.1...
CVE-2025-27317
CVE-2025-27317 concerns the WordPress plugin IT-RAYS RAYS Grid, reported as a CSRF vulnerability affecting RAYS Grid versions up to 1.3.1. The record indicates a CSRF flaw with CVSS v3.1 base score 4.3 (Medium) and a network attack vector with user interaction required; the underlying impact is l...
WordPress plugin RAYS Grid 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
CVE-2021-4423
The RAYS Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.2. This is due to missing or incorrect nonce validation on the rsgdinsertupdate function. This makes it possible for unauthenticated attackers to update post fields via a forged...
Cross site request forgery (csrf)
The RAYS Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.2. This is due to missing or incorrect nonce validation on the rsgdinsertupdate function. This makes it possible for unauthenticated attackers to update post fields via a forged...
CVE-2021-4423 RAYS Grid <= 1.2.2 - Cross-Site Request Forgery Bypass
The RAYS Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.2. This is due to missing or incorrect nonce validation on the rsgdinsertupdate function. This makes it possible for unauthenticated attackers to update post fields via a forged...
CVE-2021-4423 RAYS Grid <= 1.2.2 - Cross-Site Request Forgery Bypass
The RAYS Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.2. This is due to missing or incorrect nonce validation on the rsgdinsertupdate function. This makes it possible for unauthenticated attackers to update post fields via a forged...
CVE-2021-4423
The CVE-2021-4423 entry concerns the WordPress plugin RAYS Grid. A CSRF vulnerability exists in versions up to 1.2.2 due to missing or incorrect nonce validation in the rsgd_insert_update() function. This flaw can allow unauthenticated attackers to modify post fields by tricking an administrator ...
WordPress Plugin RAYS Grid 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
WordPress RAYS Grid plugin <= 1.2.2 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability discovered by Jerome Bruandet NinTechNet in WordPress RAYS Grid plugin versions = 1.2.2. Solution Update the WordPress RAYS Grid plugin to the latest available version at least 1.2.3...