Lucene search
+L

31 matches found

NVD
NVD
added 2026/06/30 6:16 a.m.11 views

CVE-2026-12349

The Premium Addons for KingComposer plugin for WordPress is vulnerable to unauthorized modification and loss of data in versions up to, and including, 1.1.1. This is due to missing authorization and capability checks on the addcustomsidebar and removecustomsidebar AJAX handlers, both of which are...

5.3CVSS0.00239EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/30 4:30 a.m.7 views

CVE-2026-12349

The Premium Addons for KingComposer plugin for WordPress is vulnerable to unauthorized modification and loss of data in versions up to, and including, 1.1.1. This is due to missing authorization and capability checks on the addcustomsidebar and removecustomsidebar AJAX handlers, both of which are...

5.3CVSS5.9AI score0.00239EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/30 4:30 a.m.7 views

EUVD-2026-40252

The Premium Addons for KingComposer plugin for WordPress is vulnerable to unauthorized modification and loss of data in versions up to, and including, 1.1.1. This is due to missing authorization and capability checks on the addcustomsidebar and removecustomsidebar AJAX handlers, both of which are...

5.3CVSS5.9AI score0.00239EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.12 views

PT-2026-53810

Name of the Vulnerable Software and Affected Versions Premium Addons for KingComposer versions prior to 1.1.2 Description Missing authorization and capability checks in the add custom sidebar and remove custom sidebar AJAX handlers allow unauthenticated attackers to modify or delete data. These...

5.3CVSS6AI score0.00239EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/01/09 10:34 a.m.7 views

CVE-2017-18510

The custom-sidebars plugin before 3.1.0 for WordPress has CSRF related to set location, import actions, and export actions...

8.8CVSS7AI score0.00649EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:32 a.m.8 views

CVE-2017-18511

The custom-sidebars plugin before 3.0.8.1 for WordPress has CSRF...

8.8CVSS7.1AI score0.00649EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 3:13 p.m.7 views

CVE-2025-62733

Cross-Site Request Forgery CSRF vulnerability in ProteusThemes Custom Sidebars by ProteusThemes custom-sidebars-by-proteusthemes allows Cross Site Request Forgery.This issue affects Custom Sidebars by ProteusThemes: from n/a through = 1.0.3...

4.3CVSS6.9AI score0.00111EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.5 views

EUVD-2025-202027

Cross-Site Request Forgery CSRF vulnerability in ProteusThemes Custom Sidebars by ProteusThemes custom-sidebars-by-proteusthemes allows Cross Site Request Forgery.This issue affects Custom Sidebars by ProteusThemes: from n/a through = 1.0.3...

6.3AI score0.00111EPSS
Exploits0References2
NVD
NVD
added 2025/12/09 4:18 p.m.3 views

CVE-2025-62733

Cross-Site Request Forgery CSRF vulnerability in ProteusThemes Custom Sidebars by ProteusThemes custom-sidebars-by-proteusthemes allows Cross Site Request Forgery.This issue affects Custom Sidebars by ProteusThemes: from n/a through = 1.0.3...

4.3CVSS0.00111EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 2:52 p.m.2 views

CVE-2025-62733 WordPress Custom Sidebars by ProteusThemes plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ProteusThemes Custom Sidebars by ProteusThemes custom-sidebars-by-proteusthemes allows Cross Site Request Forgery.This issue affects Custom Sidebars by ProteusThemes: from n/a through = 1.0.3...

4.3CVSS6.5AI score0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 2:52 p.m.24 views

CVE-2025-62733 WordPress Custom Sidebars by ProteusThemes plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ProteusThemes Custom Sidebars by ProteusThemes custom-sidebars-by-proteusthemes allows Cross Site Request Forgery.This issue affects Custom Sidebars by ProteusThemes: from n/a through = 1.0.3...

4.3CVSS0.00111EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 2:52 p.m.12 views

CVE-2025-62733

CVE-2025-62733 concerns the WordPress plugin “Custom Sidebars by ProteusThemes” (ProteusThemes custom-sidebars-by-proteusthemes). The vulnerability is a CSRF issue affecting versions up to 1.0.3, per the provided CVE description. Connected sources confirm the same CSRF context across multiple fee...

4.3CVSS6.5AI score0.00111EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

WordPress plugin Custom Sidebars by ProteusThemes 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...

4.3CVSS6.3AI score0.00111EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.6 views

PT-2025-50002

Cross-Site Request Forgery CSRF vulnerability in ProteusThemes Custom Sidebars by ProteusThemes custom-sidebars-by-proteusthemes allows Cross Site Request Forgery.This issue affects Custom Sidebars by ProteusThemes: from n/a through = 1.0.3...

6.9AI score0.00111EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/12/04 6:21 p.m.9 views

WordPress Custom Sidebars by ProteusThemes plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Custom Sidebars by ProteusThemes versions = 1.0.3...

4.3CVSS7AI score0.00111EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-9627

Malware in sbrugna...

8.8CVSS8.8AI score0.00649EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-9626

Malware in sbrugna...

8.8CVSS8.8AI score0.00649EPSS
Exploits0References2
CNVD
CNVD
added 2019/08/23 12:0 a.m.5 views

WordPress custom-sidebars plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. custom-sidebars is a custom feature list plugin used in it. A cross-site request forgery vulnerability exists in the WordPress...

8.8CVSS6.7AI score0.00649EPSS
Exploits0References1
NVD
NVD
added 2019/08/14 4:15 p.m.17 views

CVE-2017-18510

The custom-sidebars plugin before 3.1.0 for WordPress has CSRF related to set location, import actions, and export actions...

8.8CVSS8.8AI score0.00649EPSS
Exploits0References1
NVD
NVD
added 2019/08/14 4:15 p.m.16 views

CVE-2017-18511

The custom-sidebars plugin before 3.0.8.1 for WordPress has CSRF...

8.8CVSS8.8AI score0.00649EPSS
Exploits0References1
Rows per page
Query Builder