5 matches found
CVE-2025-66125
CVE-2025-66125 affects the Ultimate WordPress Auction Plugin (
WordPress Ultimate Auction Plugin <= 4.2.67 is vulnerable to Broken Access Control
Software Ultimate Auction Type Plugin Vulnerable versions = 4.2.67 Fixed in 4.2.8 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-6591 Patch priority Medium CVSS severity Medium 5.8 Developer Claim ownership PSID 97fe9efdff7a Credits Lucio Sá Required...
WordPress Ultimate Auction Plugin <= 4.2.5 is vulnerable to Cross Site Request Forgery (CSRF)
Software Ultimate Auction Type Plugin Vulnerable versions = 4.2.5 Fixed in 4.2.6 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37543 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ed8502cd34a3 Credits Majed Refaea...
Ultimate Auction 1.0 - Cross-Site Request Forgery (CSRF)
The Ultimate WordPress Auction Plugin WordPress plugin was affected by a Cross-Site Request Forgery CSRF security vulnerability...
WordPress Plugin Ultimate WordPress Auction Plugin 1.0 - Cross-Site Request Forgery
============================================================= \ \ / / | | / \ / | | \ \ V / | | | | | | | | | / \ | ' \ | | | | | | | | | | | | '| | / / . \ | | | | | | || | | | | | | | | | // \ | ./ || / || || |/ || | | || blackpentesters.blogspot.com...