Vulners
Lucene search
2 matches found
WordPress BuddyBoss Theme Theme <= 2.4.61 is vulnerable to Cross Site Request Forgery (CSRF)
Software BuddyBoss Theme Type Theme Vulnerable versions = 2.4.61 Fixed in 2.5.01 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37925 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 1439d00bd43a Credits Dave Jong Patchsta...
6.4AI score0.00166EPSS
Exploits0References1Affected Software1
WordPress BuddyBoss Platform plugin < 2.6.0 - Insecure Direct Object Reference on Like Comment vulnerability
Insecure Direct Object Reference on Like Comment vulnerability discovered by Faris Krivi in WordPress Plugin Buddyboss Platform versions 2.6.0...
5.3CVSS7AI score0.0043EPSS
Exploits2References1Affected Software1
20