17 matches found
EUVD-2025-12031
Malicious code in bioql PyPI...
CVE-2025-46502
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bas Matthee LSD Custom taxonomy and category meta custom-taxonomy-category-and-term-fields allows Cross Site Request Forgery.This issue affects LSD Custom taxonomy and category meta: from n/a throu...
CVE-2025-46502
CVE-2025-46502 concerns the WordPress plugin LSD Custom taxonomy and category meta (versions ≤ 1.3.2). The connected documents confirm an improper input handling issue that enables a Cross-site Scripting (XSS) path which in turn facilitates a Cross-Site Request Forgery (CSRF) scenario, i.e., the ...
WordPress plugin LSD Custom taxonomy and category meta 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
WordPress plugin Category and Taxonomy Meta Fields 跨站请求伪造漏洞
WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists in WordPress plug...
WordPress plugin Category and Taxonomy Meta Fields 跨站脚本漏洞
WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin Category...
WordPress Category and Taxonomy Meta Fields plugin <= 1.0.0 - Cross-Site Request Forgery to Taxonomy Meta Add/Delete vulnerability
Cross-Site Request Forgery to Taxonomy Meta Add/Delete vulnerability discovered by István Márton in WordPress Plugin Category and Taxonomy Meta Fields versions = 1.0.0...
CVE-2023-46091
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Bala Krishna, Sergey Yakovlev Category SEO Meta Tags plugin = 2.5 versions...
CVE-2023-44998
Cross-Site Request Forgery CSRF vulnerability in josecoelho, Randy Hoyt, steveclarkcouk, Vitaliy Kukin, Eric Le Bail, Tom Ransom Category Meta plugin plugin = 1.2.8 versions...
CVE-2023-44998
Cross-Site Request Forgery CSRF vulnerability in josecoelho, Randy Hoyt, steveclarkcouk, Vitaliy Kukin, Eric Le Bail, Tom Ransom Category Meta plugin plugin = 1.2.8 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in josecoelho, Randy Hoyt, steveclarkcouk, Vitaliy Kukin, Eric Le Bail, Tom Ransom Category Meta plugin plugin = 1.2.8 versions...
CVE-2023-44998 WordPress Category Meta Plugin <= 1.2.8 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in josecoelho, Randy Hoyt, steveclarkcouk, Vitaliy Kukin, Eric Le Bail, Tom Ransom Category Meta plugin plugin = 1.2.8 versions...
CVE-2023-44998 WordPress Category Meta Plugin <= 1.2.8 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in josecoelho, Randy Hoyt, steveclarkcouk, Vitaliy Kukin, Eric Le Bail, Tom Ransom Category Meta plugin plugin = 1.2.8 versions...
CVE-2023-44998
CVE-2023-44998 is a CSRF vulnerability in the WordPress plugin Category Meta (authors listed) affecting versions
PT-2023-29341 · WordPress · Category Meta
Name of the Vulnerable Software and Affected Versions: Category Meta plugin versions 1.2.8 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...
WordPress plugin Category Meta Cross-Site Request Forgery Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
WordPress Category Meta Plugin <= 1.2.8 is vulnerable to Cross Site Request Forgery (CSRF)
Software Category Meta Type Plugin Vulnerable versions = 1.2.8 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-44998 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1294d62f147f Credits Mika Required privilege...