Lucene search
K

7 matches found

NVD
NVD
added 2026/06/19 3:16 a.m.11 views

CVE-2026-11775

The User Admin Simplifier plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.0. This is due to missing or incorrect nonce validation on the useradminsimplifieroptionspage function. This makes it possible for unauthenticated attackers to rese...

4.3CVSS0.00128EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/19 2:29 a.m.31 views

CVE-2026-11775 User Admin Simplifier <= 3.0.0 - Cross-Site Request Forgery

The User Admin Simplifier plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.0. This is due to missing or incorrect nonce validation on the useradminsimplifieroptionspage function. This makes it possible for unauthenticated attackers to rese...

4.3CVSS0.00128EPSS
Exploits0References5
CVE
CVE
added 2026/06/19 2:29 a.m.18 views

CVE-2026-11775

The CVE-2026-11775 entry affects the WordPress plugin User Admin Simplifier (up to version 3.0.0). It suffers from a Cross-Site Request Forgery due to missing or incorrect nonce validation on the useradminsimplifier_options_page function. This allows unauthenticated attackers to reset and permane...

4.3CVSS5.3AI score0.00128EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/19 2:29 a.m.9 views

CVE-2026-11775

The User Admin Simplifier plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.0. This is due to missing or incorrect nonce validation on the useradminsimplifieroptionspage function. This makes it possible for unauthenticated attackers to rese...

4.3CVSS5.3AI score0.00128EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/19 2:29 a.m.13 views

EUVD-2026-37974

The User Admin Simplifier plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.0. This is due to missing or incorrect nonce validation on the useradminsimplifieroptionspage function. This makes it possible for unauthenticated attackers to rese...

4.3CVSS5.3AI score0.00128EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.15 views

PT-2026-50827

Name of the Vulnerable Software and Affected Versions User Admin Simplifier versions prior to 3.0.1 Description The User Admin Simplifier plugin for WordPress is subject to Cross-Site Request Forgery CSRF, a type of attack where an unauthorized user tricks a victim into performing actions they di...

4.3CVSS5.8AI score0.00128EPSS
Exploits0References11
Patchstack
Patchstack
added 2026/06/18 1:52 p.m.8 views

WordPress User Admin Simplifier plugin <= 3.0.0 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by 有馬 龍成 in WordPress Plugin User Admin Simplifier versions = 3.0.0...

4.3CVSS5.3AI score0.00128EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder