CVE-2024-32506 WordPress Radio Player plugin <= 2.0.73 - Sensitive Data Exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in SoftLab Radio Player.This issue affects Radio Player: from n/a through 2.0.73...

PT-2024-24623 · Unknown · Softlab Radio Player

Name of the Vulnerable Software and Affected Versions: SoftLab Radio Player versions through 2.0.73 Description: The issue is related to the exposure of sensitive information to an unauthorized actor. This is a problem where sensitive data is made available to individuals who should not have acce...

CVE-2024-29811

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SoftLab Radio Player allows Stored XSS.This issue affects Radio Player: from n/a through 2.0.73...

CVE-2024-29811

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SoftLab Radio Player allows Stored XSS.This issue affects Radio Player: from n/a through 2.0.73...

CVE-2024-29771

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SoftLab Dracula Dark Mode - The Revolutionary Dark Mode Plugin For WordPress allows Stored XSS.This issue affects Dracula Dark Mode - The Revolutionary Dark Mode Plugin For WordPress: from n/a...

CVE-2024-29771

CVE-2024-29771 — Dracula Dark Mode (WordPress plugin) stores cross-site scripting via improper input neutralization during web page generation. Affected: Dracula Dark Mode — The Revolutionary Dark Mode Plugin For WordPress; versions includes from n/a through 1.0.8. The connected documents confirm...

CVE-2024-29771 WordPress Dracula Dark Mode plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SoftLab Dracula Dark Mode - The Revolutionary Dark Mode Plugin For WordPress allows Stored XSS.This issue affects Dracula Dark Mode - The Revolutionary Dark Mode Plugin For WordPress: from n/a...

CVE-2024-29811 WordPress Radio Player plugin <= 2.0.73 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SoftLab Radio Player allows Stored XSS.This issue affects Radio Player: from n/a through 2.0.73...

PT-2024-23057 · Softlab · Softlab Radio Player

Name of the Vulnerable Software and Affected Versions: SoftLab Radio Player versions 2.0.73 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This means that an attacker can inject...

CVE-2024-2906

Missing Authorization vulnerability in SoftLab Radio Player.This issue affects Radio Player: from n/a through 2.0.73...

CVE-2024-2906 WordPress Radio Player plugin <= 2.0.73 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in SoftLab Radio Player.This issue affects Radio Player: from n/a through 2.0.73...

CVE-2024-2906

CVE-2024-2906 describes a Missing Authorization vulnerability in SoftLab Radio Player (WordPress Radio Player plugin). Publicly available refs corroborate the issue affecting Radio Player versions up to 2.0.73. The Red Hat security entry mirrors the description and notes the affected product as R...

CVE-2023-49769

Cross-Site Request Forgery CSRF vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.4...

CVE-2023-49769

Cross-Site Request Forgery CSRF vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.4...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.4...

CVE-2023-49769

CVE-2023-49769 is a CSRF vulnerability in the WordPress plugin Integrate Google Drive (Integrate Google Drive) affecting versions up to 1.3.4. The issue arises from insufficient CSRF protection (nonce validation not adequately enforced), allowing unauthenticated forgery of actions. Remediation: u...

PT-2023-31338 · Softlab · Softlab Integrate Google Drive

Name of the Vulnerable Software and Affected Versions: SoftLab Integrate Google Drive versions 1.3.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...

CVE-2023-47548

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SoftLab Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site.This issue affects Integrate Google Drive – Browse, Upload, Download, Embed, Play,...

CVE-2023-47548

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SoftLab Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site.This issue affects Integrate Google Drive – Browse, Upload, Download, Embed, Play,...

Open redirect

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SoftLab Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site.This issue affects Integrate Google Drive – Browse, Upload, Download, Embed, Play,...