59 matches found
EUVD-2014-7314
Malware in sbrugna...
CVE-2024-5863
The Easy Image Collage plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the ajaximagecollage function in all versions up to, and including, 1.13.5. This makes it possible for authenticated attackers, with Contributor-level access and above, to...
WordPress Easy Image Collage plugin <= 1.13.5 - Missing Authorization to Authenticated (Contributor+) Arbitrary Post Content Deletion vulnerability
Missing Authorization to Authenticated Contributor+ Arbitrary Post Content Deletion vulnerability discovered by Lucio Sá in WordPress Plugin Easy Image Collage versions = 1.13.5...
CVE-2024-5863
The Easy Image Collage plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the ajaximagecollage function in all versions up to, and including, 1.13.5. This makes it possible for authenticated attackers, with Contributor-level access and above, to...
WordPress plugin Easy Image Collage security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress Easy Image Collage Plugin <= 1.13.5 is vulnerable to Broken Access Control
Software Easy Image Collage Type Plugin Vulnerable versions = 1.13.5 Fixed in 1.13.6 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5863 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 9f1bcb932e47 Credits Lucio Sá Required privile...
collage-eulberg.de Improper Access Control vulnerability OBB-3769393
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
WordPress Divi Collage Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software Divi Collage Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e951cc107409 Credits Rafie Muhammad Patchstack Required...
WordPress Divi Collage plugin <= 1.0.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Divi Collage plugin versions = 1.0.0. Solution Update the WordPress Divi Collage plugin to the latest available version at least 1.0.1...
WordPress Divi Collage plugin <= 1.0.0 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress Divi Collage plugin versions = 1.0.0. Solution Update the WordPress Divi Collage plugin to the latest available version at least 1.0.1...
Layout from Instagram: Collage - Customized SSL, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Layout from Instagram: Collage published at the 'play' market has multiple vulnerabilities...
Face Fun - Photo Collage Maker - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Face Fun - Photo Collage Maker published at the 'play' market has multiple vulnerabilities...
Photo Collage Editor Pro - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Photo Collage Editor Pro published at the 'play' market has multiple vulnerabilities...
Photo & Shape Collage Maker - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Photo & Shape Collage Maker published at the 'play' market has multiple vulnerabilities...
Video Collage - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Video Collage published at the 'play' market has multiple vulnerabilities...
Blend Collage - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Blend Collage published at the 'play' market has multiple vulnerabilities...
Photo Collage - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Photo Collage published at the 'play' market has multiple vulnerabilities...
Baby Photo Collage Maker - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Baby Photo Collage Maker published at the 'play' market has multiple vulnerabilities...
KD Collage Free - Base64 encoded String, External URLs, SD-card access vulnerabilities
HackApp vulnerability scanner discovered that application KD Collage Free published at the 'play' market has multiple vulnerabilities...
PIP Camera Photo Collage Maker - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application PIP Camera Photo Collage Maker published at the 'play' market has multiple vulnerabilities...