6 matches found
WordPress MainWP BlogVault Backup Extension Plugin <= 1.3 is vulnerable to Broken Access Control
Software MainWP BlogVault Backup Extension Type Plugin Vulnerable versions = 1.3 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-23741 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID a23fba51ad99 Credits Dave Jong...
blogVault 1.40-1.44 - Unauthenticated PHP Object Injection
The Backup & Staging – BlogVault Backups WordPress plugin was affected by an Unauthenticated PHP Object Injection security vulnerability...
blogVault 1.08 - Missing Account Empty Secret Key Generation
The Backup & Staging – BlogVault Backups WordPress plugin was affected by a Missing Account Empty Secret Key Generation security vulnerability...
blogVault 1.05 - admin.php blogVault Key Setting CSRF
The Backup & Staging – BlogVault Backups WordPress plugin was affected by an admin.php blogVault Key Setting CSRF security vulnerability...
WordPress blogVault Plugin <= 1.05 - Cross Site Request Forgery
This plugin is prone to a admin.php blogVault key setting cross site request forgery vulnerability. Solution Update the plugin...
WordPress blogVault Plugin <= 1.08 - BYPASS
This plugin is prone to a missing account empty secret key generation vulnerability. Solution Update the plugin to v1.0.9...