WordPress plugin Unyson 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A cross-site reques...

WordPress Unyson plugin <=2.7.29 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Unyson versions = 2.7.29...

WordPress Unyson Plugin <=2.7.29 is vulnerable to Cross Site Request Forgery (CSRF)

Software Unyson Type Plugin Vulnerable versions =2.7.29 Fixed in 2.7.31 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-34814 Patch priority Low CVSS severity Low 5.4 Developer Unyson PSID 6d66f71bed35 Credits Dhabaleshwar Das Required privilege...

EUVD-2022-34499

The Unyson WordPress plugin before 2.7.27 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...

WordPress plugin Unyson 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...