CVE-2022-1844

The WP Sentry WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored Cross-Site Scripting due to the lack of sanitisation and escaping as well...

MAL-2024-10888 Malicious code in webpack-insert-sentry-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e09bc9d55945389c2e5f8e61bc733735e8f50b50b8ebd61b6801f9d31278d74 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2022-1844

The WP Sentry WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored Cross-Site Scripting due to the lack of sanitisation and escaping as well...

WordPress plugin WP Sentry 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Sentry plugin version 1.0 and earlier versions are vulnerable to cross-site request...