CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-42207

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00147EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:16 a.m.•4 views

CVE-2023-38390

Cross-Site Request Forgery CSRF vulnerability in Anshul Labs Mobile Address Bar Changer plugin = 3.0 versions...

8.8CVSS7.1AI score0.00147EPSS

Exploits0References1

NVD•added 2023/10/03 11:15 a.m.•16 views

CVE-2023-38390

Cross-Site Request Forgery CSRF vulnerability in Anshul Labs Mobile Address Bar Changer plugin = 3.0 versions...

8.8CVSS5.8AI score0.00147EPSS

Exploits0References1

Prion•added 2023/10/03 11:15 a.m.•18 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Anshul Labs Mobile Address Bar Changer plugin = 3.0 versions...

6.8CVSS8.8AI score0.00147EPSS

Exploits0References1Affected Software1

CVE•added 2023/10/03 10:24 a.m.•58 views

CVE-2023-38390

CVE-2023-38390 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Anshul Labs Mobile Address Bar Changer (versions ≤ 3.0). The issue arises from CSRF in the plugin’s settings update flow, allowing an unauthenticated attacker to induce a user to perform unintended actions...

8.8CVSS6.5AI score0.00147EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/10/03 12:0 a.m.•3 views

PT-2023-26399 · Anshul · Anshul Labs Mobile Address Bar Changer

Name of the Vulnerable Software and Affected Versions: Anshul Labs Mobile Address Bar Changer plugin versions = 3.0 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...

8.8CVSS8.8AI score0.00147EPSS

Exploits0References5

CNNVD•added 2023/10/03 12:0 a.m.•2 views

WordPress Plugin mobile-address-bar-changer Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

8.8CVSS6.5AI score0.00147EPSS

Exploits0References2

Patchstack•added 2023/07/25 12:0 a.m.•10 views

WordPress Mobile Address Bar Changer Plugin <= 3.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Mobile Address Bar Changer Type Plugin Vulnerable versions = 3.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-38390 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8cf3f99225d5 Credits Skalucy...

8.8CVSS6.6AI score0.00147EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by