23 matches found
EUVD-2023-52808
Malicious code in bioql PyPI...
CVE-2023-48775
Missing Authorization vulnerability in Gfazioli WP Cleanfix allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cleanfix: from n/a through 5.6.2...
CVE-2013-2108
WordPress WP Cleanfix Plugin 2.4.4 has CSRF...
CVE-2023-48775
Missing Authorization vulnerability in Gfazioli WP Cleanfix allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cleanfix: from n/a through 5.6.2...
CVE-2023-48775
Missing Authorization vulnerability in Gfazioli WP Cleanfix allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cleanfix: from n/a through 5.6.2...
CVE-2023-48775 WordPress WP CleanFix plugin <= 5.6.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in Gfazioli WP Cleanfix allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cleanfix: from n/a through 5.6.2...
CVE-2023-48775 WordPress WP CleanFix plugin <= 5.6.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in Gfazioli WP Cleanfix allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cleanfix: from n/a through 5.6.2...
PT-2024-13648 · WordPress · Gfazioli Wp Cleanfix
Name of the Vulnerable Software and Affected Versions: Gfazioli WP Cleanfix versions through 5.6.2 Description: The issue is related to a Missing Authorization vulnerability, allowing exploitation of incorrectly configured access control security levels. This enables potential unauthorized access...
WordPress plugin WP Cleanfix 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
WP Cleanfix < 5.7.0 - Subscriber+ Post/Comment/Post Meta Content Replacement
Description The plugin is vulnerable to unauthorized access of data and modification of data due to a missing capability check on the register function, allowing authenticated attackers, with subscriber-level access and above, to find and replace post, comment, and postmeta content as well as...
WordPress WP Cleanfix Plugin <= 5.6.2 is vulnerable to Broken Access Control
Software WP Cleanfix Type Plugin Vulnerable versions = 5.6.2 Fixed in 5.7.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-48775 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 3abc506f014f Credits Abdi Pranata Required privilege...
CVE-2013-2108
WordPress WP Cleanfix Plugin 2.4.4 has CSRF...
CVE-2013-2109
WordPress plugin wp-cleanfix has Remote Code Execution...
Cross site request forgery (csrf)
WordPress WP Cleanfix Plugin 2.4.4 has CSRF...
Remote code execution
WordPress plugin wp-cleanfix has Remote Code Execution...
CVE-2013-2109
WordPress plugin wp-cleanfix has Remote Code Execution...
CVE-2013-2109
CVE-2013-2109 affects WordPress plugin wp-cleanfix, with a Remote Code Execution vulnerability. The NVD lists CVSS-2.0 base score 6.8 (Partial confidentiality, integrity, availability impact) and CVSS-3.1 base score 8.8 (High impact, network attack, user interaction required). The connected docum...
CVE-2013-2108
The CVE-2013-2108 entry concerns WordPress WP Cleanfix Plugin (v2.4.4) susceptible to a Cross‑Site Request Forgery (CSRF). Multiple connected sources corroborate a CSRF flaw in this plugin, with additional references noting related exposure of remote execution and XSS in WP CleanFix, and an explo...
CVE-2013-2108
WordPress WP Cleanfix Plugin 2.4.4 has CSRF...
wp-cleanfix - Remote Comm& Execution, CSRF & XSS
The WP CleanFix WordPress plugin was affected by a Remote Comm& Execution, CSRF & XSS security vulnerability...