7 matches found
EUVD-2022-39013
Malicious code in bioql PyPI...
WordPress ActiveDEMAND Plugin <= 0.2.43 is vulnerable to Cross Site Request Forgery (CSRF)
Software ActiveDEMAND Type Plugin Vulnerable versions = 0.2.43 Fixed in 0.2.44 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-35638 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 476218797ea5 Credits Joshua Chan Required...
WordPress ActiveDEMAND plugin <= 0.2.41 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin ActiveDEMAND versions = 0.2.41...
CVE-2022-36296
Broken Authentication vulnerability in JumpDEMAND Inc. ActiveDEMAND plugin = 0.2.27 at WordPress allows unauthenticated post update/create/delete...
CVE-2022-36296
Broken Authentication vulnerability in JumpDEMAND Inc. ActiveDEMAND plugin = 0.2.27 at WordPress allows unauthenticated post update/create/delete...
CVE-2022-36296 WordPress ActiveDEMAND plugin <= 0.2.27 - Broken Authentication vulnerability
Broken Authentication vulnerability in JumpDEMAND Inc. ActiveDEMAND plugin = 0.2.27 at WordPress allows unauthenticated post update/create/delete...
CVE-2022-36296
The CVE-2022-36296 entry concerns WordPress ActiveDEMAND plugin versions