36 matches found
CVE-2024-34814
Cross-Site Request Forgery CSRF vulnerability in Unyson Unyson unyson.This issue affects Unyson: from n/a through = 2.7.29...
EUVD-2023-48809
Malicious code in bioql PyPI...
EUVD-2024-35079
Malicious code in bioql PyPI...
CVE-2023-44472
Missing Authorization vulnerability in ThemeFuse Unyson.This issue affects Unyson: from n/a through 2.7.28...
CVE-2022-2219
The Unyson WordPress plugin before 2.7.27 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
Unyson < 2.7.31 - Cross-Site Request Forgery
Description The Unyson plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.30. This is due to missing or incorrect nonce validation on an unknown function. This makes it possible for unauthenticated attackers to perform an unknown action...
CVE-2024-34814
Cross-Site Request Forgery CSRF vulnerability in ThemeFuse Unyson.This issue affects Unyson: from n/a through 2.7.29...
CVE-2024-34814
Cross-Site Request Forgery CSRF vulnerability in Unyson Unyson unyson.This issue affects Unyson: from n/a through = 2.7.29...
WordPress plugin Unyson 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site reques...
CVE-2024-34814 WordPress Unyson plugin <= 2.7.29 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in ThemeFuse Unyson.This issue affects Unyson: from n/a through 2.7.29...
CVE-2024-34814 WordPress Unyson plugin <=2.7.29 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Unyson Unyson unyson.This issue affects Unyson: from n/a through = 2.7.29...
CVE-2024-34814
CVE-2024-34814 describes a Cross-Site Request Forgery (CSRF) vulnerability in ThemeFuse Unyson, affecting Unyson versions up to 2.7.29. The Connected Red Hat entry repeats the CSRF issue for Unyson, aligning with the CVE description. The Initial document and connected items do not provide specifi...
PT-2024-26210 · Unyson · Unyson
Name of the Vulnerable Software and Affected Versions: Unyson versions through 2.7.29 Description: A Cross-Site Request Forgery CSRF issue affects the software. This type of issue allows an attacker to trick a user into performing unintended actions on a web application that the user is...
WordPress Unyson plugin <=2.7.29 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Unyson versions = 2.7.29...
WordPress Unyson Plugin <=2.7.29 is vulnerable to Cross Site Request Forgery (CSRF)
Software Unyson Type Plugin Vulnerable versions =2.7.29 Fixed in 2.7.31 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-34814 Patch priority Low CVSS severity Low 5.4 Developer Unyson PSID 6d66f71bed35 Credits Dhabaleshwar Das Required privilege...
CVE-2023-44472
Missing Authorization vulnerability in ThemeFuse Unyson.This issue affects Unyson: from n/a through 2.7.28...
CVE-2023-44472
Missing Authorization vulnerability in ThemeFuse Unyson.This issue affects Unyson: from n/a through 2.7.28...
CVE-2023-44472 WordPress Unyson plugin <= 2.7.28 - Broken Access Control vulnerability
Missing Authorization vulnerability in ThemeFuse Unyson.This issue affects Unyson: from n/a through 2.7.28...
CVE-2023-44472 WordPress Unyson plugin <= 2.7.28 - Broken Access Control vulnerability
Missing Authorization vulnerability in ThemeFuse Unyson.This issue affects Unyson: from n/a through 2.7.28...
WordPress plugin Unyson 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...