CVE-2023-45836

Cross-Site Request Forgery CSRF vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

CVE-2023-45837

Unauth. Reflected Cross-Site Scripting XSS vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

EUVD-2023-50106

Malicious code in bioql PyPI...

Ultimate Taxonomy Manager <= 2.0 - Reflected XSS

Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2023-45837

Unauth. Reflected Cross-Site Scripting XSS vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

CVE-2023-45837

Unauth. Reflected Cross-Site Scripting XSS vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

WordPress Plugin Ultimate Taxonomy Manager Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

CVE-2023-45837

CVE-2023-45837 : Unauthenticated reflected XSS in XYDAC Ultimate Taxonomy Manager plugin (versions 2.0 when available, since no fixed version is listed in the provided materials.

CVE-2023-45836

Cross-Site Request Forgery CSRF vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

CVE-2023-45836

CVE-2023-45836 is a Cross-Site Request Forgery (CSRF) vulnerability in the XYDAC Ultimate Taxonomy Manager WordPress plugin, affecting versions &lt;= 2.0. Public sources (NVD, Patchstack, Red Hat) describe an CSRF flaw with a base impact around CVSS v3.1 4.3 (Medium) to 8.8 in other metrics depen...

CVE-2023-45836 WordPress Ultimate Taxonomy Manager Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

WordPress Plugin Ultimate Taxonomy Manager Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

PT-2023-29723 · Unknown · Xydac Ultimate Taxonomy Manager

Name of the Vulnerable Software and Affected Versions: XYDAC Ultimate Taxonomy Manager plugin versions = 2.0 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web...

WordPress Ultimate Taxonomy Manager Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Taxonomy Manager Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-45837 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d8bfd5b3d9c5 Credits thiennv...

WordPress Ultimate Taxonomy Manager Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Ultimate Taxonomy Manager Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-45836 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 646016b8aa59 Credits thiennv...