4 matches found
WordPress BLAZE Retail Widget plugin <= 2.5.2 - Malicious Polyfill.io Embed vulnerability
Malicious Polyfill.io Embed vulnerability discovered by Sansec.io in WordPress Plugin BLAZE Retail Widget versions = 2.5.2...
WordPress BLAZE Retail Widget Plugin <= 2.5.2 is vulnerable to Backdoor
Software BLAZE Retail Widget Type Plugin Vulnerable versions = 2.5.2 Fixed in 2.5.4 OWASP Top 10 A3: Injection Classification Backdoor CVE N/A Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a9f87b35d94a Credits Sansec.io Required privilege Unauthenticated Published 3 July...
WordPress BLAZE Retail Widget plugin 2.2.5 to 2.5.2 - Injected Backdoor vulnerability
Injected Backdoor vulnerability discovered by WordFence in WordPress Plugin BLAZE Retail Widget versions 2.2.5-2.5.2...
WordPress BLAZE Retail Widget Plugin 2.2.5-2.5.2 is vulnerable to Backdoor
Software BLAZE Retail Widget Type Plugin Vulnerable versions 2.2.5-2.5.2 Fixed in 2.5.4 OWASP Top 10 A3: Injection Classification Backdoor CVE CVE-2024-6297 Patch priority High CVSS severity High 10 Developer Claim ownership PSID b9aa7ce213ab Credits WordFence Required privilege Unauthenticated...