4 matches found
CVE-2025-14162
The BMLT WordPress Plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.11.4. This is due to missing nonce validation on the 'BMLTPlugincreateoption' and 'BMLTPlugindeleteoption ' action. This makes it possible for unauthenticated attackers to...
CVE-2025-14162
CVE-2025-14162 affects the BMLT WordPress Plugin (
PT-2025-50861
The BMLT WordPress Plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.11.4. This is due to missing nonce validation on the 'BMLTPlugin create option' and 'BMLTPlugin delete option ' action. This makes it possible for unauthenticated attackers ...
Wordpress plugin bmlt-wordpress-satellite-plugin suffers from a reflected cross-site scripting vulnerability
WordPress is a set of blogging platform developed using the PHP language , the platform supports in PHP and MySQL server set up a personal blog site . bmlt-wordpress-satellite-plugin Wordpress Basic Meeting List Toolkit BMLT a plugin . A reflective cross-site scripting vulnerability exists in the...