Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:32 p.m.11 views

CVE-2026-6395

The Word 2 Cash plugin for WordPress is vulnerable to Cross-Site Request Forgery leading to Stored Cross-Site Scripting in versions up to and including 0.9.2. This is due to the complete absence of nonce verification on the settings save handler in the w2cadmin function, combined with missing inp...

6.1CVSS5.7AI score0.00153EPSS
Exploits0References1
NVD
NVD
added 2026/05/20 2:16 a.m.23 views

CVE-2026-6395

The Word 2 Cash plugin for WordPress is vulnerable to Cross-Site Request Forgery leading to Stored Cross-Site Scripting in versions up to and including 0.9.2. This is due to the complete absence of nonce verification on the settings save handler in the w2cadmin function, combined with missing inp...

6.1CVSS0.00153EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/20 12:0 a.m.9 views

WordPress plugin Word 2 Cash 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.1CVSS5.9AI score0.00153EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/05/19 12:3 p.m.9 views

WordPress Word 2 Cash plugin <= 0.9.2 - Cross-Site Request Forgeryto Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgeryto Stored Cross-Site Scripting vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Word 2 Cash versions = 0.9.2...

6.1CVSS5.8AI score0.00153EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder