23 matches found
EUVD-2024-35484
Malicious code in bioql PyPI...
EUVD-2024-30405
Malicious code in bioql PyPI...
CVE-2024-35726
Missing Authorization vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.19...
WordPress WooBuddy plugin <= 3.4.25 - Cross-Site Request Forgery to Limited Settings Update vulnerability
Cross-Site Request Forgery to Limited Settings Update vulnerability discovered by Tieu Pham Trong Nhan in WordPress Plugin WooBuddy versions = 3.4.25...
WordPress WooBuddy plugin <= 3.4.24 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update vulnerability
Missing Authorization to Authenticated Subscriber+ Limited Settings Update vulnerability discovered by Tieu Pham Trong Nhan in WordPress Plugin WooBuddy versions = 3.4.24...
CVE-2024-32603
Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.20...
CVE-2024-35726
Missing Authorization vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.19...
CVE-2024-35726
Missing Authorization vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.19...
CVE-2024-35726
Technical details for CVE-2024-35726 are not publicly provided in the supplied documents. Monitor for official advisories from vendors/security sources for affected products and remediation guidance.
CVE-2024-35726 WordPress WooBuddy plugin <= 3.4.19 - Broken Access Control vulnerability
Missing Authorization vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.19...
CVE-2024-35726 WordPress WooBuddy plugin <= 3.4.19 - Broken Access Control vulnerability
Missing Authorization vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.19...
WordPress plugin WooBuddy security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
WordPress WooBuddy plugin <= 3.4.19 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin WooBuddy versions = 3.4.19...
WordPress WooBuddy Plugin <= 3.4.19 is vulnerable to Broken Access Control
Software WooBuddy Type Plugin Vulnerable versions = 3.4.19 Fixed in 3.4.20 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-35726 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b375cf67af7c Credits Abdi Pranata Required privilege...
CVE-2024-32603
Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.20...
CVE-2024-32603
Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.20...
CVE-2024-32603
CVE-2024-32603 affects the WordPress plugin ThemeKraft WooBuddy (WooBuddy) up to version 3.4.20. The issue is a deserialization of untrusted data that enables a PHP object-injection vulnerability (PHP Object Injection) due to an insecure deserialization process. The vulnerability is classified wi...
CVE-2024-32603 WordPress WooBuddy plugin <= 3.4.20 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.20...
PT-2024-24725
Name of the Vulnerable Software and Affected Versions ThemeKraft WooBuddy versions 3.4.20 and earlier Description The issue is related to the deserialization of untrusted data, which can lead to potential security risks. There is no information provided about the estimated number of potentially...
WordPress WooBuddy plugin <= 3.4.20 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by LVT-tholv2k in WordPress Plugin WooBuddy versions = 3.4.20...