Lucene search
+L

298 matches found

Packet Storm
Packet Storm
added 2019/07/29 12:0 a.m.126 views

WordPress Simple Membership 3.8.4 Cross Site Request Forgery

Exploit Title: Cross Site Request Forgery in Wordpress Simple Membership plugin Date: 2019-07-27 Exploit Author: rubyman Vendor Homepage: https://wordpress.org/plugins/simple-membership/ wpvulndb : https://wpvulndb.com/vulnerabilities/9482 Version: 3.8.4 Tested on: Windows 8.1 CVE : CVE-2019-1432...

0.0315EPSS
Exploits6
Patchstack
Patchstack
added 2019/07/29 12:0 a.m.23 views

WordPress Simple Membership plugin <= 3.8.4 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability found by rubyman in WordPress Simple Membership plugin versions = 3.8.4. Solution Update the WordPress Simple Membership plugin to the latest available version at least 3.8.5...

8.8CVSS2.8AI score0.0315EPSS
Exploits6References1Affected Software1
CNVD
CNVD
added 2019/07/29 12:0 a.m.6 views

WordPress Simple Membership plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Simple Membership plugin is used in one of the website membership plugin. A cross-site request forgery vulnerability exists in the Bulk...

8.8CVSS6.7AI score0.0315EPSS
Exploits6References1
Exploit DB
Exploit DB
added 2019/07/29 12:0 a.m.334 views

WordPress Plugin Simple Membership 3.8.4 - Cross-Site Request Forgery

Exploit Title: Cross Site Request Forgery in Wordpress Simple Membership plugin Date: 2019-07-27 Exploit Author: rubyman Vendor Homepage: https://wordpress.org/plugins/simple-membership/ wpvulndb : https://wpvulndb.com/vulnerabilities/9482 Version: 3.8.4 Tested on: Windows 8.1 CVE : CVE-2019-1432...

8.8CVSS9AI score0.0315EPSS
Exploits6
NVD
NVD
added 2019/07/28 2:15 p.m.26 views

CVE-2019-14328

The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section...

8.8CVSS8.8AI score0.0315EPSS
Exploits6References3
OSV
OSV
added 2019/07/28 2:15 p.m.5 views

CVE-2019-14328

The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section...

8.8CVSS7.3AI score0.0315EPSS
Exploits6References3
Prion
Prion
added 2019/07/28 2:15 p.m.12 views

Design/Logic Flaw

The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section...

6.8CVSS8.7AI score0.0315EPSS
Exploits6References3Affected Software1
Cvelist
Cvelist
added 2019/07/28 1:27 p.m.26 views

CVE-2019-14328

The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section...

8.8AI score0.0315EPSS
Exploits6References3
CVE
CVE
added 2019/07/28 1:27 p.m.135 views

CVE-2019-14328

The CVE-2019-14328 entry covers a CSRF vulnerability in WordPress Simple Membership plugin up to version 3.8.4, affecting the Bulk Operation feature. Technical details in connected docs show an attacker can abuse CSRF to trigger unintended bulk membership changes by convincing a site administrato...

8.8CVSS8.6AI score0.0315EPSS
Exploits6References3Affected Software1
wpexploit
wpexploit
added 2019/07/27 12:0 a.m.18 views

Simple Membership <= 3.8.4 - Cross-Site Request Forgery (CSRF)

CSRF issue in the Bulk Operation menu tab https://youtu.be/HkTD8DhhwhM https://gofile.io/?c=zWYnLM - CSRF html files...

6.8CVSS1.3AI score0.0315EPSS
Exploits6References1
WPVulnDB
WPVulnDB
added 2017/11/08 12:0 a.m.26 views

Simple Membership < 3.5.7 - XSS

The Simple Membership WordPress plugin was affected by a XSS security vulnerability...

4.3CVSS2.5AI score0.00916EPSS
Exploits0Affected Software1
seebug.org
seebug.org
added 2017/03/29 12:0 a.m.35 views

Joomla! Component Simple Membership 3.3.3 - 'userId' Parameter SQL Injection

Joomla! Component Simple Membership 3.3.3 - the 'userId' Parameter SQL Injection Joomla! Component Simple Membership 3.3.3, the presence of the parameter filter is not strict, leading to a sql injection vulnerability, if the other server is turned on the error display, can directly use, if you tu...

7.8AI score
Exploits0
0day.today
0day.today
added 2017/03/14 12:0 a.m.31 views

Joomla Simple Membership 3.3.3 Component - userId Parameter SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component Simple Membership v3.3.3 - SQL Injection Google Dork: inurl:index.php?option=comsimplemembership Date: 14.03.2017 Vendor Homepage: http://ordasoft.com/ Software :...

Exploits0
exploitpack
exploitpack
added 2017/03/14 12:0 a.m.15 views

Joomla! Component Simple Membership 3.3.3 - userId SQL Injection

Joomla! Component Simple Membership 3.3.3 - userId SQL Injection Exploit Title: Joomla! Component Simple Membership v3.3.3 - SQL Injection Google Dork: inurl:index.php?option=comsimplemembership Date: 14.03.2017 Vendor Homepage: http://ordasoft.com/ Software :...

Exploits0
Exploit DB
Exploit DB
added 2017/03/14 12:0 a.m.49 views

Joomla! Component Simple Membership 3.3.3 - &#039;userId&#039; SQL Injection

Exploit Title: Joomla! Component Simple Membership v3.3.3 - SQL Injection Google Dork: inurl:index.php?option=comsimplemembership Date: 14.03.2017 Vendor Homepage: http://ordasoft.com/ Software :...

7.4AI score
Exploits0
WPVulnDB
WPVulnDB
added 2016/07/14 12:0 a.m.6 views

Simple Membership <= 3.2.8 - Cross-Site Scripting (XSS)

The Simple Membership WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...

1.9AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2016/07/14 12:0 a.m.7 views

WordPress Simple Membership Plugin <= 3.2.8 - Cross Site Scripting (XSS)

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

1.6AI score
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2016/07/13 12:0 a.m.28 views

WordPress Simple Membership 3.2.8 Cross Site Scripting

------------------------------------------------------------------------ Cross-Site Scripting vulnerability in Simple Membership WordPress Plugin ------------------------------------------------------------------------ Yorick Koster, July 2016...

Exploits0
Rows per page
Query Builder