Lucene search
K

124 matches found

Patchstack
Patchstack
added 2024/11/14 4:37 p.m.8 views

WordPress Really Simple Security Plugin 9.0.0-9.1.1.1 - Account Takeover vulnerability

Account Takeover vulnerability discovered by István Márton in WordPress Plugin Really Simple SSL versions 9.0.0-9.1.1.1...

9.8CVSS7AI score0.81722EPSS
Exploits21References1Affected Software1
Wordfence Blog
Wordfence Blog
added 2024/11/14 3:49 p.m.30 views

4,000,000 WordPress Sites Using Really Simple Security Free and Pro Versions Affected by Critical Authentication Bypass Vulnerability

Introductory Note: This is one of the more serious vulnerabilities that we have reported on in our 12 year history as a security provider for WordPress. This vulnerability affects Really Simple Security, formerly known as Really Simple SSL , installed on over 4 million websites, and allows an...

9.8CVSS8.2AI score0.81722EPSS
Exploits21
Positive Technologies
Positive Technologies
added 2024/11/06 12:0 a.m.8 views

PT-2024-8207

Name of the Vulnerable Software and Affected Versions Really Simple Security Free, Pro, and Pro Multisite versions 9.0.0 through 9.1.1.1 Description The Really Simple Security plugins for WordPress are affected by an authentication bypass issue. This is due to improper user check error handling i...

10CVSS6.9AI score0.81722EPSS
Exploits21References103
NVD
NVD
added 2024/04/18 11:15 a.m.21 views

CVE-2024-31229

Server-Side Request Forgery SSRF vulnerability in Really Simple Plugins Really Simple SSL.This issue affects Really Simple SSL: from n/a through 7.2.3...

5.5CVSS5.5AI score0.0033EPSS
Exploits0References1
CVE
CVE
added 2024/04/18 10:28 a.m.75 views

CVE-2024-31229

CVE-2024-31229 is a Server-Side Request Forgery in Really Simple SSL for WordPress (affects

5.5CVSS5.1AI score0.0033EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/18 12:0 a.m.6 views

WordPress Plugin Really Simple SSL 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A code issue vulnerability exists in WordPress Plugin...

5.5CVSS6.8AI score0.0033EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/18 12:0 a.m.8 views

PT-2024-23869 · Unknown · Really Simple Ssl

Name of the Vulnerable Software and Affected Versions: Really Simple SSL versions through 7.2.3 Description: The issue is a Server-Side Request Forgery SSRF vulnerability. This means an attacker can potentially trick the server into making unauthorized requests, leading to various malicious...

5.5CVSS6.5AI score0.0033EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/04/16 6:13 p.m.6 views

WordPress Really Simple SSL plugin <= 7.2.3 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Really Simple SSL versions = 7.2.3...

5.5CVSS7.1AI score0.0033EPSS
Exploits0Affected Software1
CVE
CVE
added 2023/12/31 10:17 a.m.58 views

CVE-2023-52180

CVE-2023-52180 affects Recipe Maker For Your Food Blog from Zip Recipes (Zip Recipes) up to version 8.1.0. The Wordfence vulnerability list notes an Authenticated (Contributor+) SQL Injection in this plugin, with a patch status of Patched. Impact is SQL Injection that can be triggered by an authe...

8.1CVSS8.6AI score0.00487EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/11/30 2:15 p.m.43 views

CVE-2023-34030

Cross-Site Request Forgery CSRF vulnerability in Really Simple Plugins Complianz, Really Simple Plugins Complianz Premium allows Cross-Site Request Forgery.This issue affects Complianz: from n/a through 6.4.5; Complianz Premium: from n/a through 6.4.7...

8.8CVSS0.00338EPSS
Exploits0References2
NVD
NVD
added 2023/11/30 2:15 p.m.36 views

CVE-2023-33333

Cross-Site Request Forgery CSRF vulnerability in Really Simple Plugins Complianz, Really Simple Plugins Complianz Premium allows Cross-Site Scripting XSS.This issue affects Complianz: from n/a through 6.4.4; Complianz Premium: from n/a through 6.4.6.1...

8.8CVSS0.00311EPSS
Exploits0References2
Prion
Prion
added 2023/11/30 2:15 p.m.23 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Really Simple Plugins Complianz, Really Simple Plugins Complianz Premium allows Cross-Site Request Forgery.This issue affects Complianz: from n/a through 6.4.5; Complianz Premium: from n/a through 6.4.7...

6.8CVSS7.2AI score0.00338EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/11/30 2:15 p.m.32 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Really Simple Plugins Complianz, Really Simple Plugins Complianz Premium allows Cross-Site Scripting XSS.This issue affects Complianz: from n/a through 6.4.4; Complianz Premium: from n/a through 6.4.6.1...

6.8CVSS6.8AI score0.00311EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/11/30 2:0 p.m.51 views

CVE-2023-33333

The CVE describes a CSRF vulnerability in Really Simple Plugins Complianz and Complianz Premium that can lead to Cross-Site Scripting (XSS). Affected versions are Complianz up to 6.4.4 and Complianz Premium up to 6.4.6.1. The CVSS data indicates high impact (I/H, C/H, A/H) with network attack vec...

8.8CVSS8.4AI score0.00311EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/11/30 1:54 p.m.52 views

CVE-2023-34030

CVE-2023-34030 is a Cross-Site Request Forgery (CSRF) vulnerability in Really Simple Plugins Complianz and Complianz Premium. Affected: Complianz up to 6.4.5 and Complianz Premium up to 6.4.7. Public sources (NVD/NVD-linked) list CVSSv3.1 base scores of 8.8 (HIGH) with network attack vector, no p...

8.8CVSS8.5AI score0.00338EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/11/30 1:54 p.m.42 views

CVE-2023-34030 WordPress Complianz and Complianz Premium plugins - Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Really Simple Plugins Complianz, Really Simple Plugins Complianz Premium allows Cross-Site Request Forgery.This issue affects Complianz: from n/a through 6.4.5; Complianz Premium: from n/a through 6.4.7...

6.5CVSS8.9AI score0.00338EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/11/30 12:0 a.m.4 views

PT-2023-24302 · Really Simple Plugins · Really Simple Plugins Complianz Premium +1

Name of the Vulnerable Software and Affected Versions: Really Simple Plugins Complianz versions through 6.4.4 Really Simple Plugins Complianz Premium versions through 6.4.6.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that also allows Cross-Site Scripting XSS in...

8.8CVSS8.3AI score0.00311EPSS
Exploits0References7
CVE
CVE
added 2023/08/17 8:44 a.m.47 views

CVE-2023-31076

CVE-2023-31076 is a WordPress Zip Recipes Recipe Maker for Your Food Blog vulnerability: unauthenticated, reflected XSS in versions

7.1CVSS6AI score0.00379EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/07/17 2:15 p.m.26 views

CVE-2023-35089

Cross-Site Request Forgery CSRF vulnerability in Really Simple Plugins Recipe Maker For Your Food Blog from Zip Recipes plugin = 8.0.7 versions...

8.8CVSS0.00256EPSS
Exploits0References1
Prion
Prion
added 2023/07/17 2:15 p.m.17 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Really Simple Plugins Recipe Maker For Your Food Blog from Zip Recipes plugin = 8.0.7 versions...

6.8CVSS8.8AI score0.00256EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder