6 matches found
CVE-2023-25989
Cross-Site Request Forgery CSRF vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading...
CVE-2023-25989
Summary: CVE-2023-25989 is a CSRF vulnerability reported across multiple Meks WordPress plugins (Audio Player, Time Ago, ThemeForest Smart Widget, Smart Author Widget, Easy Maps, Easy Photo Feed Widget, Simple Flickr Widget, Easy Ads Widget, Smart Social Widget, and related plugins). The flaw ena...
WordPress Meks Simple Flickr Widget Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Simple Flickr Widget Type Plugin Vulnerable versions = 1.2 Fixed in 1.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ad7aa5e63051 Credits Muhammad Daff...
WordPress Simple Flickr Display Plugin - Stored Cross Site Scripting
This plugin is prone to an username field stored cross site scripting vulnerability Solution Upgrade the plugin...
WordPress Simple Flickr Display Plugin - Stored Cross Site Scripting
This plugin is prone to an username field stored cross site scripting vulnerability Solution Upgrade the plugin...
Simple Flickr Display - Username Field Stored Cross-Site Scripting (XSS)
The Simple Flickr Display WordPress plugin was affected by an Username Field Stored Cross-Site Scripting XSS security vulnerability...