EUVD-2023-50393

Malicious code in bioql PyPI...

WordPress WP Radio plugin <= 3.1.9 - Authenticated Stored Cross-Site Scripting vulnerability

Authenticated Stored Cross-Site Scripting vulnerability discovered by Lucio Sá in WordPress Plugin WP Radio – Worldwide Online Radio Stations Directory for WordPress versions = 3.1.9...

CVE-2024-1042

The WP Radio – Worldwide Online Radio Stations Directory for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX functions in all versions up to, and including, 3.1.9. This makes it possible for authenticated...

CVE-2024-1042 WP Radio – Worldwide Online Radio Stations Directory for WordPress <= 3.1.9 - Missing Authorization via multiple AJAX actions

The WP Radio – Worldwide Online Radio Stations Directory for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX functions in all versions up to, and including, 3.1.9. This makes it possible for authenticated...

CVE-2024-1042 WP Radio – Worldwide Online Radio Stations Directory for WordPress <= 3.1.9 - Missing Authorization via multiple AJAX actions

The WP Radio – Worldwide Online Radio Stations Directory for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX functions in all versions up to, and including, 3.1.9. This makes it possible for authenticated...

CVE-2024-1041 WP Radio – Worldwide Online Radio Stations Directory for WordPress <= 3.1.9 - Authenticated(Subscriber+) Stored Cross-Site Scripting via Settings

The WP Radio – Worldwide Online Radio Stations Directory for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's settings in all versions up to, and including, 3.1.9 due to insufficient input sanitization and output escaping as well as insufficient access...

CVE-2024-1041 WP Radio – Worldwide Online Radio Stations Directory for WordPress <= 3.1.9 - Authenticated(Subscriber+) Stored Cross-Site Scripting via Settings

The WP Radio – Worldwide Online Radio Stations Directory for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's settings in all versions up to, and including, 3.1.9 due to insufficient input sanitization and output escaping as well as insufficient access...

CVE-2024-1041

CVE-2024-1041 pertains to the WP Radio – Worldwide Online Radio Stations Directory for WordPress plugin. The issue is a Stored Cross-Site Scripting vulnerability in the plugin’s settings, arising from insufficient input sanitization and output escaping, coupled with inadequate access control on t...

WordPress plugin WP Radio 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2023-46150

Cross-Site Request Forgery CSRF vulnerability in WP Military WP Radio plugin = 3.1.9 versions...

CVE-2023-46150

Cross-Site Request Forgery CSRF vulnerability in WP Military WP Radio plugin = 3.1.9 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in WP Military WP Radio plugin = 3.1.9 versions...

CVE-2023-46150

CVE-2023-46150 affects the WP Radio WordPress plugin (&lt;= 3.1.9). It is a CSRF vulnerability allowing unauthenticated or minimal-privilege actions that could be triggered by a logged-in user, per connected sources. Affected software: WP Radio / WordPress plugin. Root cause: CSRF in WP Radio’s h...

CVE-2023-46150 WordPress WP Radio plugin <= 3.1.9 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in WP Military WP Radio plugin = 3.1.9 versions...

PT-2023-29878 · WordPress · Wp Military Wp Radio

Name of the Vulnerable Software and Affected Versions: WP Military WP Radio plugin versions = 3.1.9 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...

WordPress WP Radio – Worldwide Online Radio Stations Directory for WordPress Plugin <= 3.1.9 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Radio – Worldwide Online Radio Stations Directory for WordPress Type Plugin Vulnerable versions = 3.1.9 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-46150 Patch priority Low CVSS severity Low 5.4 Developer Claim...