Lucene search
K

5 matches found

Patchstack
Patchstack
added 2024/05/23 12:0 a.m.16 views

WordPress Contact Form & Lead Form Elementor Builder Plugin <= 1.9.1 is vulnerable to Content Injection

Software Contact Form & Lead Form Elementor Builder Type Plugin Vulnerable versions = 1.9.1 Fixed in 1.9.2 OWASP Top 10 A3: Injection Classification Content Injection CVE CVE-2024-4261 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 5d051149eabf Credits stealthcopter...

5.4CVSS6.8AI score0.00326EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/08/09 12:0 a.m.9 views

WordPress Biometric Login for WooCommerce Plugin < 1.0.4 is vulnerable to Privilege Escalation

Software Biometric Login for WooCommerce Type Plugin Vulnerable versions 1.0.4 Fixed in 1.0.4 OWASP Top 10 A2: Broken Authentication Classification Privilege Escalation CVE N/A Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 23f90f576a47 Credits Alexander Concha Required...

6.9AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/07/28 12:0 a.m.21 views

WordPress Social Share Icons & Social Share Buttons Plugin <= 3.5.7 is vulnerable to Broken Access Control

Software Social Share Icons & Social Share Buttons Type Plugin Vulnerable versions = 3.5.7 Fixed in 3.5.8 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-0958 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 70d3b475ed6b Credits...

6.5CVSS6.2AI score0.00557EPSS
Exploits0References4Affected Software1
Patchstack
Patchstack
added 2023/06/20 12:0 a.m.8 views

WordPress JS Help Desk – Best Help Desk & Support Plugin Plugin <= 2.7.7 is vulnerable to Insecure Direct Object References (IDOR)

Software JS Help Desk – Best Help Desk & Support Plugin Type Plugin Vulnerable versions = 2.7.7 Fixed in 2.7.8 OWASP Top 10 A5: Broken Access Control Classification Insecure Direct Object References IDOR CVE CVE-2023-23679 Patch priority Low CVSS severity Low 4.6 Developer Claim ownership PSID...

8.8CVSS6.4AI score0.00472EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/03/21 12:0 a.m.11 views

WordPress Sheets To WP Table Live Sync Plugin <= 2.12.14 is vulnerable to Cross Site Request Forgery (CSRF)

Software Sheets To WP Table Live Sync Type Plugin Vulnerable versions = 2.12.14 Fixed in 2.12.15 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Request Forgery CSRF CVE CVE-2022-47150 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 10f41cbc718b Credits...

5.5AI score0.00113EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder