Lucene search
+L

84 matches found

NVD
NVD
added 2024/08/12 1:38 p.m.14 views

CVE-2024-7621

The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the processwpfeedbackmiscoptions function in all versions up to, and including, 4.0.2. This makes it possible for...

5.4CVSS0.0047EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/08/12 2:58 a.m.5 views

WordPress Atarim plugin <= 4.0.2 - Missing Authorization to Authenticated (Subscriber+) Settings Update vulnerability

Missing Authorization to Authenticated Subscriber+ Settings Update vulnerability discovered by Lucio Sá in WordPress Plugin Atarim versions = 4.0.2...

5.4CVSS7AI score0.0047EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/08/12 12:0 a.m.4 views

WordPress plugin Atarim 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.4CVSS6.5AI score0.0047EPSS
Exploits0References4
CVE
CVE
added 2024/08/10 2:1 a.m.38 views

CVE-2024-7621

The CVE-2024-7621 entry concerns the Visual Website Collaboration, Feedback & Project Management – Atarim WordPress plugin. Root cause: missing capability check in process_wpfeedback_misc_options() allowed authenticated users with Subscriber level or higher to modify plugin settings and, by exten...

5.4CVSS5.4AI score0.0047EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/08/10 12:0 a.m.9 views

PT-2024-38458 · WordPress · Atarim

Name of the Vulnerable Software and Affected Versions: Atarim plugin for WordPress versions prior to 4.0.3 Description: The issue allows authenticated attackers with Subscriber-level access and above to modify data due to a missing capability check on the process wpfeedback misc options function...

5.4CVSS6.8AI score0.0047EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/07/19 12:17 p.m.4 views

WordPress Atarim plugin <= 4.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by piro Patchstack Alliance in WordPress Plugin Atarim versions = 4.0...

6.5CVSS7AI score0.00419EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/19 12:0 a.m.10 views

WordPress Atarim Plugin <= 4.0 is vulnerable to Broken Access Control

Software Atarim Type Plugin Vulnerable versions = 4.0 Fixed in 4.0.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-38771 Patch priority Medium CVSS severity Medium 6.5 Developer Atarim PSID 7e5566c5bcde Credits piro Required privilege Unauthenticated...

6.5CVSS6.3AI score0.00419EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/28 12:36 p.m.3 views

WordPress Atarim plugin <= 3.31 - Authenticated Cross Site Scripting (XSS) vulnerability

Authenticated Cross Site Scripting XSS vulnerability discovered by piro Patchstack Alliance in WordPress Plugin Atarim versions = 3.31...

5.9CVSS6.1AI score0.00263EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/28 12:0 a.m.14 views

WordPress Atarim Plugin <= 3.31 is vulnerable to Cross Site Scripting (XSS)

Software Atarim Type Plugin Vulnerable versions = 3.31 Fixed in 3.32 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37434 Patch priority Low CVSS severity Low 5.9 Developer Atarim PSID c53738d448b9 Credits piro Required privilege Administrator Published 28 June,...

5.9CVSS6.6AI score0.00263EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/05/31 2:34 a.m.5 views

WordPress Atarim plugin <= 3.30 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by Robert DeVore in WordPress Plugin Atarim versions = 3.30...

7.2CVSS5.8AI score0.00463EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/23 10:21 a.m.3 views

WordPress Visual Website Collaboration, Feedback & Project Management – Atarim plugin <= 3.22.6 - Hardcoded Credentials vulnerability

Hardcoded Credentials vulnerability discovered by Lucio Sá in WordPress Plugin Atarim versions = 3.22.6...

7.5CVSS7AI score0.00494EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/05/23 6:46 a.m.117 views

CVE-2024-2038

CVE-2024-2038 affects the Visual Website Collaboration, Feedback & Project Management – Atarim WordPress plugin. The vulnerability arises from hardcoded credentials used to authenticate all incoming API requests, enabling unauthorized access. Exploitation allows unauthenticated attackers to modif...

7.5CVSS7.6AI score0.00494EPSS
Exploits0References3
NVD
NVD
added 2023/11/14 9:15 p.m.14 views

CVE-2023-47544

Unauth. Stored Cross-Site Scripting XSS vulnerability in Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin = 3.12 versions...

7.1CVSS0.00412EPSS
Exploits0References1
OSV
OSV
added 2023/11/14 9:15 p.m.3 views

CVE-2023-47544

Unauth. Stored Cross-Site Scripting XSS vulnerability in Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin = 3.12 versions...

6.1CVSS7.3AI score0.00412EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 9:15 p.m.18 views

Cross site scripting

Unauth. Stored Cross-Site Scripting XSS vulnerability in Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin = 3.12 versions...

5.8CVSS5.8AI score0.00412EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/14 9:1 p.m.10 views

CVE-2023-47544 WordPress Atarim Plugin <= 3.12 is vulnerable to Cross Site Scripting (XSS)

Unauth. Stored Cross-Site Scripting XSS vulnerability in Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin = 3.12 versions...

7.1CVSS5.5AI score0.00412EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/14 9:1 p.m.23 views

CVE-2023-47544 WordPress Atarim Plugin <= 3.12 is vulnerable to Cross Site Scripting (XSS)

Unauth. Stored Cross-Site Scripting XSS vulnerability in Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin = 3.12 versions...

7.1CVSS6.1AI score0.00412EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/14 12:0 a.m.6 views

PT-2023-30494 · Atarim · Atarim Visual Website Collaboration

Name of the Vulnerable Software and Affected Versions: Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin versions prior to 3.12 Description: The issue is related to an Unauth. Stored Cross-Site Scripting XSS vulnerability. This means that an attacker can inject...

7.1CVSS5.9AI score0.00412EPSS
Exploits0References3
OSV
OSV
added 2023/09/04 11:15 a.m.3 views

CVE-2023-37393

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin = 3.9.3 versions...

4.8CVSS7.3AI score0.0032EPSS
Exploits0References1
NVD
NVD
added 2023/09/04 11:15 a.m.24 views

CVE-2023-37393

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Atarim Visual Website Collaboration, Feedback & Project Management – Atarim plugin = 3.9.3 versions...

7.1CVSS6AI score0.0032EPSS
Exploits0References1
Rows per page
Query Builder