4 matches found
WordPress Freesoul Deactivate Plugins – Plugin manager and cleanup Plugin <= 2.1.3 is vulnerable to Broken Access Control
Software Freesoul Deactivate Plugins – Plugin manager and cleanup Type Plugin Vulnerable versions = 2.1.3 Fixed in 2.1.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-46188 Patch priority Low CVSS severity Low 4.3 Developer Jose Mortellaro PSID...
WordPress EG-Attachments Plugin <= 2.1.3 is vulnerable to Cross Site Scripting (XSS)
Software EG-Attachments Type Plugin Vulnerable versions = 2.1.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-46070 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 04006798b0e0 Credits Le Ngoc Anh Required...
CVE-2018-8899
IdentityServer IdentityServer4 1.x before 1.5.3 and 2.x before 2.1.3 does not encode the redirect URI on the authorization response page, which might lead to XSS in some configurations...
PT-2016-6573 · Mysql Server · Mysql Connectors
Name of the Vulnerable Software and Affected Versions: MySQL Connector versions 2.1.3 and earlier MySQL Connector versions 2.0.4 and earlier Description: The issue affects confidentiality, integrity, and availability. It can be exploited by remote attackers via vectors related to Connector/Python...