EUVD-2023-37185

Malicious code in bioql PyPI...

CVE-2023-32964

Cross-Site Request Forgery CSRF vulnerability in Made with Fuel Better Notifications for WP plugin = 1.9.2 versions...

WordPress Better Notifications for WP Plugin <= 1.6.14 is vulnerable to Cross Site Scripting (XSS)

Software Better Notifications for WP Type Plugin Vulnerable versions = 1.6.14 Fixed in 1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Made with Fuel Ltd. PSID 93575c532e5f Credits Rafie Muhammad...

CVE-2023-32964

Cross-Site Request Forgery CSRF vulnerability in Made with Fuel Better Notifications for WP plugin = 1.9.2 versions...

CVE-2023-32964

Cross-Site Request Forgery CSRF vulnerability in Made with Fuel Better Notifications for WP plugin = 1.9.2 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Made with Fuel Better Notifications for WP plugin = 1.9.2 versions...

CVE-2023-32964

CVE-2023-32964: A CSRF vulnerability in the WordPress plugin Better Notifications for WP (Made with Fuel) affects versions

WordPress plugin Customize WordPress Emails and Alerts – Better Notifications for WP 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

PT-2023-24104 · WordPress · Better Notifications For Wp

Name of the Vulnerable Software and Affected Versions: Made with Fuel Better Notifications for WP plugin versions 1.9.2 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing...

WordPress Better Notifications for WP Plugin <= 1.9.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Better Notifications for WP Type Plugin Vulnerable versions = 1.9.2 Fixed in 1.9.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-32964 Patch priority Low CVSS severity Low 4.3 Developer Made with Fuel Ltd. PSID 72f7e05deec7 Credits...

CVE-2022-0345 Better Notifications for WP < 1.8.7 - Email Address Disclosure

The Customize WordPress Emails and Alerts WordPress plugin before 1.8.7 does not have authorisation and CSRF check in its bnfwsearchusers AJAX action, allowing any authenticated users to call it and query for user e-mail prefixes finding the first letter, then the second one, then the third one...

WordPress Better Notifications for WP plugin <= 1.8.6 - Email Address Disclosure vulnerability

Email Address Disclosure vulnerability discovered by Krzysztof Zając in WordPress Better Notifications for WP plugin versions = 1.8.6. Solution Update the WordPress Better Notifications for WP plugin to the latest available version at least 1.8.7...