Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:59 a.m.5 views

CVE-2023-1345

The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.1. This is due to missing or incorrect nonce validation on the queueposts function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS5.2AI score0.00307EPSS
Exploits0References1
NVD
NVD
added 2023/03/10 8:15 p.m.22 views

CVE-2023-1345

The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.1. This is due to missing or incorrect nonce validation on the queueposts function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS4.2AI score0.00307EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/03/10 7:7 p.m.27 views

CVE-2023-1345 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'queue_posts'

The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.1. This is due to missing or incorrect nonce validation on the queueposts function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS4.6AI score0.00307EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/03/10 7:7 p.m.22 views

CVE-2023-1345 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request Forgery via 'queue_posts'

The RapidLoad Power-Up for Autoptimize plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.1. This is due to missing or incorrect nonce validation on the queueposts function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS6.6AI score0.00307EPSS
Exploits0References2
CVE
CVE
added 2023/03/10 7:7 p.m.67 views

CVE-2023-1345

CVE-2023-1345 describes a CSRF vulnerability in the RapidLoad Power-Up for Autoptimize WordPress plugin up to version 1.7.1, caused by missing/incorrect nonce validation in the queue_posts function. This allows unauthenticated attackers to forge requests and modify the plugin cache if a site admi...

4.3CVSS5.1AI score0.00307EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder