Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:24 a.m.6 views

CVE-2023-40199

Cross-Site Request Forgery CSRF vulnerability in CRUDLab WP Like Button plugin = 1.7.0 versions...

8.8CVSS7.1AI score0.00208EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:7 a.m.12 views

CVE-2019-13344

An authentication bypass vulnerability in the CRUDLab WP Like Button plugin through 1.6.0 for WordPress allows unauthenticated attackers to change settings. The contains function in wplikebutton.php did not check if the current request is made by an authorized user, thus allowing any...

5.3CVSS7.2AI score0.45095EPSS
Exploits5References1
NVD
NVD
added 2023/10/03 1:15 p.m.11 views

CVE-2023-40199

Cross-Site Request Forgery CSRF vulnerability in CRUDLab WP Like Button plugin = 1.7.0 versions...

8.8CVSS6.5AI score0.00208EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/03 12:0 a.m.6 views

PT-2023-27318 · WordPress · Crudlab Wp Like Button

Name of the Vulnerable Software and Affected Versions: CRUDLab WP Like Button plugin versions = 1.7.0 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...

8.8CVSS8.8AI score0.00208EPSS
Exploits0References5
NVD
NVD
added 2019/07/05 4:15 p.m.27 views

CVE-2019-13344

An authentication bypass vulnerability in the CRUDLab WP Like Button plugin through 1.6.0 for WordPress allows unauthenticated attackers to change settings. The contains function in wplikebutton.php did not check if the current request is made by an authorized user, thus allowing any...

5.3CVSS5.6AI score0.45095EPSS
Exploits5References4
Prion
Prion
added 2019/07/05 4:15 p.m.15 views

Authentication flaw

An authentication bypass vulnerability in the CRUDLab WP Like Button plugin through 1.6.0 for WordPress allows unauthenticated attackers to change settings. The contains function in wplikebutton.php did not check if the current request is made by an authorized user, thus allowing any...

5CVSS5.5AI score0.45095EPSS
Exploits5References4Affected Software1
Cvelist
Cvelist
added 2019/07/05 3:33 p.m.29 views

CVE-2019-13344

An authentication bypass vulnerability in the CRUDLab WP Like Button plugin through 1.6.0 for WordPress allows unauthenticated attackers to change settings. The contains function in wplikebutton.php did not check if the current request is made by an authorized user, thus allowing any...

5.5AI score0.45095EPSS
Exploits5References4
Rows per page
Query Builder