Lucene search
+L

13 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:56 a.m.6 views

CVE-2023-25989

Cross-Site Request Forgery CSRF vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading t...

8.8CVSS6.9AI score0.00378EPSS
Exploits0References1
CVE
CVE
added 2023/10/03 11:0 a.m.59 views

CVE-2023-25989

Summary: CVE-2023-25989 is a CSRF vulnerability reported across multiple Meks WordPress plugins (Audio Player, Time Ago, ThemeForest Smart Widget, Smart Author Widget, Easy Maps, Easy Photo Feed Widget, Simple Flickr Widget, Easy Ads Widget, Smart Social Widget, and related plugins). The flaw ena...

8.8CVSS6.4AI score0.00378EPSS
Exploits0References10Affected Software10
Cvelist
Cvelist
added 2023/10/03 11:0 a.m.59 views

CVE-2023-25989 Cross-Site Request Forgery (CSRF) vulnerability in multiple WordPress plugins by Meks

Cross-Site Request Forgery CSRF vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading...

4.3CVSS9AI score0.00378EPSS
Exploits0References10
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.15 views

WordPress Meks Easy Maps Plugin <= 2.1.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Easy Maps Type Plugin Vulnerable versions = 2.1.3 Fixed in 2.1.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e349a998361e Credits Muhammad Daffa...

8.8CVSS8.6AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.11 views

WordPress Meks Easy Ads Widget Plugin <= 2.0.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Easy Ads Widget Type Plugin Vulnerable versions = 2.0.7 Fixed in 2.0.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID f9a03944bc97 Credits Muhammad Daffa...

8.8CVSS8.6AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.14 views

WordPress Meks ThemeForest Smart Widget Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks ThemeForest Smart Widget Type Plugin Vulnerable versions = 1.4 Fixed in 1.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2367191a142b Credits Muhammad...

8.8CVSS7AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.15 views

WordPress Meks Smart Author Widget Plugin <= 1.1.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Smart Author Widget Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.1.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7a6fdc5ff131 Credits Muhammad...

8.8CVSS8.6AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.8 views

WordPress Meks Easy Photo Feed Widget Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Easy Photo Feed Widget Type Plugin Vulnerable versions = 1.2.7 Fixed in 1.2.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2e63e6df17a9 Credits Muhamma...

8.8CVSS8.6AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.11 views

WordPress Meks Video Importer Plugin <= 1.0.10 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Video Importer Type Plugin Vulnerable versions = 1.0.10 Fixed in 1.0.11 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1adedef969c6 Credits Muhammad Daff...

8.8CVSS7AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.12 views

WordPress Meks Time Ago Plugin <= 1.1.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Time Ago Type Plugin Vulnerable versions = 1.1.6 Fixed in 1.1.7 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 035367ec544d Credits Muhammad Daffa Requir...

8.8CVSS7AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.12 views

WordPress Meks Audio Player Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Audio Player Type Plugin Vulnerable versions = 1.2 Fixed in 1.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 885bf7c11f1b Credits Muhammad Daffa Requir...

8.8CVSS8.6AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/05 12:0 a.m.16 views

WordPress Meks Simple Flickr Widget Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Simple Flickr Widget Type Plugin Vulnerable versions = 1.2 Fixed in 1.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ad7aa5e63051 Credits Muhammad Daff...

8.8CVSS8.6AI score0.00378EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/07/26 12:0 a.m.12 views

WordPress Meks Smart Social Widget Plugin <= 1.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software Meks Smart Social Widget Type Plugin Vulnerable versions = 1.6 Fixed in 1.6.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b2f058eee5d5 Credits Muhammad Daf...

8.8CVSS6.5AI score0.00378EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder