CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2024-29925

Malicious code in bioql PyPI...

5.4CVSS6.4AI score0.00209EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:36 a.m.•3 views

CVE-2024-32103

Cross-Site Request Forgery CSRF vulnerability in Siteimprove.This issue affects Siteimprove: from n/a through 2.0.6...

5.4CVSS5.1AI score0.00209EPSS

Exploits0References1

WPVulnDB•added 2024/04/17 12:0 a.m.•19 views

Siteimprove < 2.0.7 - Cross-Site Request Forgery

Description The Siteimprove plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.6. This is due to missing or incorrect nonce validation on two functions. This makes it possible for unauthenticated attackers to request a token via a forged request...

5.4CVSS6.7AI score0.00209EPSS

Exploits0References1Affected Software1

NVD•added 2024/04/15 9:15 a.m.•8 views

CVE-2024-32103

Cross-Site Request Forgery CSRF vulnerability in Siteimprove.This issue affects Siteimprove: from n/a through 2.0.6...

5.4CVSS5.5AI score0.00209EPSS

Exploits0References1

Vulnrichment•added 2024/04/15 8:44 a.m.•14 views

CVE-2024-32103 WordPress Siteimprove plugin <= 2.0.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Siteimprove.This issue affects Siteimprove: from n/a through 2.0.6...

5.4CVSS5.1AI score0.00209EPSS

Exploits0References1

CVE•added 2024/04/15 8:44 a.m.•49 views

CVE-2024-32103

Technical details for CVE-2024-32103 (Siteimprove CSRF in WordPress plugin up to version 2.0.6) are not provided in the connected documents; no patch/version info is confirmed here. Monitor for updates.

5.4CVSS5.1AI score0.00209EPSS

Exploits0References1

Cvelist•added 2024/04/15 8:44 a.m.•15 views

CVE-2024-32103 WordPress Siteimprove plugin <= 2.0.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Siteimprove.This issue affects Siteimprove: from n/a through 2.0.6...

5.4CVSS5.8AI score0.00209EPSS

Exploits0References1

Positive Technologies•added 2024/04/15 12:0 a.m.•4 views

PT-2024-24409 · Unknown · Siteimprove

Name of the Vulnerable Software and Affected Versions: Siteimprove versions through 2.0.6 Description: A Cross-Site Request Forgery CSRF issue affects the software. This type of issue allows an attacker to trick a user into performing unintended actions on a web application that the user is...

5.4CVSS6.5AI score0.00209EPSS

Exploits0References4

CNNVD•added 2024/04/15 12:0 a.m.•3 views

WordPress Plugin Siteimprove 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Siteimprove A...

5.4CVSS6.5AI score0.00209EPSS

Exploits0References2

Patchstack•added 2024/04/11 10:52 a.m.•4 views

WordPress Siteimprove plugin <= 2.0.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Siteimprove versions = 2.0.6...

5.4CVSS7AI score0.00209EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/11 12:0 a.m.•11 views

WordPress Siteimprove Plugin <= 2.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software Siteimprove Type Plugin Vulnerable versions = 2.0.6 Fixed in 2.0.7 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32103 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 1a10b998bcf1 Credits Dhabaleshwar Das Requir...

5.4CVSS6.6AI score0.00209EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by