13 matches found
EUVD-2022-35004
Malicious code in bioql PyPI...
CVE-2022-2762
The AdminPad WordPress plugin before 2.2 does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack...
CVE-2022-2762
The AdminPad WordPress plugin before 2.2 does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack...
CVE-2022-2762
The AdminPad WordPress plugin before 2.2 does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack...
Cross site request forgery (csrf)
The AdminPad WordPress plugin before 2.2 does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack...
WordPress plugin AdminPad 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...
CVE-2022-2762 AdminPad < 2.2 - Note Update via CSRF
The AdminPad WordPress plugin before 2.2 does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack...
PT-2022-18525 · WordPress · Adminpad
Name of the Vulnerable Software and Affected Versions: AdminPad WordPress plugin versions prior to 2.2 Description: The issue concerns a lack of CSRF check when updating an admin's note, allowing attackers to make a logged-in admin update their notes via a CSRF attack. Recommendations: For versio...
CVE-2022-2762
Summary: CVE-2022-2762 affects the AdminPad WordPress plugin, versions prior to 2.2, where there is no CSRF check when updating an admin’s note. This allows a CSRF attack to cause a logged-in admin to update notes without proper authorization. Root cause: missing CSRF validation in the note-updat...
CVE-2022-2762 AdminPad < 2.2 - Note Update via CSRF
The AdminPad WordPress plugin before 2.2 does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack...
AdminPad < 2.2 - Note Update via CSRF
The plugin does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack Notes are displayed in the Dashboard /wp-admin/index.php...
WordPress AdminPad plugin <= 2.1 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability discovered by Raad Haddad Cloudyrion GmbH in WordPress AdminPad plugin versions = 2.1. Solution Update the WordPress AdminPad plugin to the latest available version at least 2.2...
AdminPad < 2.2 - Note Update via CSRF
The plugin does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack PoC Notes are displayed in the Dashboard /wp-admin/index.php...