Lucene search
+L

4 matches found

Vulnrichment
Vulnrichment
added 2023/05/03 7:33 a.m.7 views

CVE-2023-22691 WordPress Category Specific RSS feed Subscription Plugin <= v2.1 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin = v2.1 versions...

4.3CVSS8.9AI score0.00271EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/03 7:33 a.m.31 views

CVE-2023-22691 WordPress Category Specific RSS feed Subscription Plugin <= v2.1 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin = v2.1 versions...

4.3CVSS9AI score0.00271EPSS
Exploits0References1
CVE
CVE
added 2023/05/03 7:33 a.m.56 views

CVE-2023-22691

CVE-2023-22691 affects the WordPress plugin Category Specific RSS feed Subscription (Tips and Tricks HQ) &lt;= v2.1. A CSRF vulnerability exists in settings/credential-related actions due to missing CSRF checks, enabling unauthenticated attackers to induce actions on behalf of admins. Patch sourc...

8.8CVSS6.6AI score0.00271EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/01/20 12:0 a.m.17 views

WordPress Category Specific RSS feed Subscription Plugin <= v2.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Category Specific RSS feed Subscription Type Plugin Vulnerable versions = v2.1 Fixed in v2.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-22691 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID aed3a951c25f Credi...

8.8CVSS7AI score0.00271EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder