CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-15552

Malware in sbrugna...

8.8CVSS5.8AI score0.00271EPSS

Exploits0References4

RedhatCVE•added 2025/05/22 4:18 a.m.•4 views

CVE-2019-5984

Cross-site request forgery CSRF vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.8CVSS7.4AI score0.00271EPSS

Exploits0References1

OpenVAS•added 2023/11/27 12:0 a.m.•9 views

WordPress Custom CSS Pro Plugin < 1.0.4 CSRF Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:waspthemes:customcsspro"; if description...

8.8CVSS7AI score0.00271EPSS

Exploits0References1

Patchstack•added 2019/07/10 12:0 a.m.•12 views

WordPress Custom CSS Pro plugin <= 1.0.3 - Cross-Site Request Forgery (CSRF) and Cross-Site Scripting (XSS) vulnerabilities

Cross-Site Request Forgery CSRF and Cross-Site Scripting XSS vulnerabilities found by Cryptography Laboratory in WordPress Custom CSS Pro plugin versions = 1.0.3. Solution Update the WordPress Custom CSS Pro plugin to the latest available version at least 1.0.4...

8.8CVSS2.1AI score0.00271EPSS

Exploits0References1Affected Software1

OSV•added 2019/07/05 2:15 p.m.•0 views

CVE-2019-5984

Cross-site request forgery CSRF vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.8CVSS6.5AI score

Exploits0References3

NVD•added 2019/07/05 2:15 p.m.•14 views

CVE-2019-5984

Cross-site request forgery CSRF vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.8CVSS8.8AI score0.00271EPSS

Exploits0References3

Prion•added 2019/07/05 2:15 p.m.•7 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...

6.8CVSS8.8AI score0.00271EPSS

Exploits0References3Affected Software1

CVE•added 2019/07/05 1:20 p.m.•168 views

CVE-2019-5984

The CVE-2019-5984 entry concerns the WordPress plugin Custom CSS Pro (versions ≤ 1.0.3). The root issue is a cross-site request forgery (CSRF) that can allow remote attackers to hijack administrator sessions, enabling unauthorized actions when a logged-in admin views a malicious page. Public sour...

8.8CVSS8.8AI score0.00271EPSS

Exploits0References3Affected Software1

Cvelist•added 2019/07/05 1:20 p.m.•11 views

CVE-2019-5984

Cross-site request forgery CSRF vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.9AI score0.00271EPSS

Exploits0References3

Positive Technologies•added 2019/07/05 12:0 a.m.•2 views

PT-2019-17918 · Unknown · Custom Css Pro

Name of the Vulnerable Software and Affected Versions: Custom CSS Pro versions 1.0.3 and earlier Description: A cross-site request forgery issue allows remote attackers to hijack the authentication of administrators. The attack vectors are not specified. Recommendations: For Custom CSS Pro versio...

8.8CVSS8.6AI score0.00271EPSS

Exploits0References5

Japan Vulnerability Notes•added 2019/06/24 5:27 a.m.•1 views

WordPress Plugin "Custom CSS Pro" vulnerable to cross-site request forgery

Overview WordPress Plugin "Custom CSS Pro" provided by WaspThemes contains a cross-site request forgery vulnerability CWE-352. Dai Nakamura of Cryptography Laboratory,Department of Information and Communication Engineering,Tokyo Denki University directly reported this vulnerability to the develop...

8.8CVSS6.5AI score0.00271EPSS

Exploits0References5

CNVD•added 2019/06/24 12:0 a.m.•1 views

WordPress Custom CSS Pro plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Custom CSS Pro plugin is a CSS editor plugin used in it. A cross-site request forgery vulnerability exists in WordPress Custom CSS Pro...

8.8CVSS6.7AI score0.00271EPSS

Exploits0References1

Japan Vulnerability Notes•added 2019/06/24 12:0 a.m.•183 views

JVN#29933378: WordPress Plugin "Custom CSS Pro" vulnerable to cross-site request forgery

WordPress Plugin "Custom CSS Pro" provided by WaspThemes contains a cross-site request forgery vulnerability CWE-352. Impact If a user views a malicious page while logged in, unintended operations may be performed. Solution Update the plugin Update the plugin according to the information provided...

8.8CVSS8.5AI score0.00271EPSS

Exploits0