18 matches found
CVE-2026-25411
Cross-Site Request Forgery CSRF vulnerability in themastercut Revision Manager TMC revision-manager-tmc allows Cross Site Request Forgery.This issue affects Revision Manager TMC: from n/a through = 2.8.22...
CVE-2026-25411
Cross-Site Request Forgery CSRF vulnerability in themastercut Revision Manager TMC revision-manager-tmc allows Cross Site Request Forgery.This issue affects Revision Manager TMC: from n/a through = 2.8.22...
CVE-2026-25411
Cross-Site Request Forgery CSRF vulnerability in themastercut Revision Manager TMC revision-manager-tmc allows Cross Site Request Forgery.This issue affects Revision Manager TMC: from n/a through = 2.8.22...
CVE-2026-25411 WordPress Revision Manager TMC plugin <= 2.8.22 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in themastercut Revision Manager TMC revision-manager-tmc allows Cross Site Request Forgery.This issue affects Revision Manager TMC: from n/a through = 2.8.22...
CVE-2026-25411 WordPress Revision Manager TMC plugin <= 2.8.22 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in themastercut Revision Manager TMC revision-manager-tmc allows Cross Site Request Forgery.This issue affects Revision Manager TMC: from n/a through = 2.8.22...
CVE-2026-25411
CVE-2026-25411 is a CSRF vulnerability in the Revision Manager TMC WordPress plugin, affecting versions up to 2.8.22. The issue is described across multiple sources (NVD, Red Hat, PatchStack, CVE list) as Cross-Site Forgery in Revision Manager TMC. The primary documented impact is CSRF exposure; ...
PT-2026-20736
Cross-Site Request Forgery CSRF vulnerability in themastercut Revision Manager TMC revision-manager-tmc allows Cross Site Request Forgery.This issue affects Revision Manager TMC: from n/a through = 2.8.22...
WordPress plugin Revision Manager TMC 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
WordPress Revision Manager TMC plugin <= 2.8.22 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Revision Manager TMC versions = 2.8.22...
CVE-2024-7622
The Revision Manager TMC plugin for WordPress is vulnerable to unauthorized arbitrary email sending due to a missing capability check on the aajaxQuickEmailTestCallback function in all versions up to, and including, 2.8.19. This makes it possible for authenticated attackers, with subscriber-level...
CVE-2024-7622
The Revision Manager TMC plugin for WordPress is vulnerable to unauthorized arbitrary email sending due to a missing capability check on the aajaxQuickEmailTestCallback function in all versions up to, and including, 2.8.19. This makes it possible for authenticated attackers, with subscriber-level...
CVE-2024-7622 Revision Manager TMC <= 2.8.19 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Email Sending
The Revision Manager TMC plugin for WordPress is vulnerable to unauthorized arbitrary email sending due to a missing capability check on the aajaxQuickEmailTestCallback function in all versions up to, and including, 2.8.19. This makes it possible for authenticated attackers, with subscriber-level...
CVE-2024-7622 Revision Manager TMC <= 2.8.19 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Email Sending
The Revision Manager TMC plugin for WordPress is vulnerable to unauthorized arbitrary email sending due to a missing capability check on the aajaxQuickEmailTestCallback function in all versions up to, and including, 2.8.19. This makes it possible for authenticated attackers, with subscriber-level...
CVE-2024-7622
CVE-2024-7622 (Revision Manager TMC, WordPress) : The plugin versions up to and including 2.8.19 allow unauthorized arbitrary email sending due to a missing capability check in _a_ajaxQuickEmailTestCallback(). An authenticated attacker with subscriber-level access or higher can send emails with a...
WordPress Revision Manager TMC plugin <= 2.8.19 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Email Sending vulnerability
Missing Authorization to Authenticated Subscriber+ Arbitrary Email Sending vulnerability discovered by Lucio Sá in WordPress Plugin Revision Manager TMC versions = 2.8.19...
WordPress Revision Manager TMC Plugin <= 2.8.19 is vulnerable to Broken Access Control
Software Revision Manager TMC Type Plugin Vulnerable versions = 2.8.19 Fixed in 2.8.20 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-7622 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 5f819b940710 Credits Lucio Sá Required...
WordPress plugin Revision Manager TMC 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2024-38459 · WordPress · Revision Manager Tmc Plugin
Name of the Vulnerable Software and Affected Versions: Revision Manager TMC plugin for WordPress versions up to, and including, 2.8.19 Description: The issue is related to unauthorized arbitrary email sending due to a missing capability check on the a ajaxQuickEmailTestCallback function. This...