13 matches found
CVE-2023-25989
Cross-Site Request Forgery CSRF vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading t...
CVE-2023-25989
Summary: CVE-2023-25989 is a CSRF vulnerability reported across multiple Meks WordPress plugins (Audio Player, Time Ago, ThemeForest Smart Widget, Smart Author Widget, Easy Maps, Easy Photo Feed Widget, Simple Flickr Widget, Easy Ads Widget, Smart Social Widget, and related plugins). The flaw ena...
CVE-2023-25989 Cross-Site Request Forgery (CSRF) vulnerability in multiple WordPress plugins by Meks
Cross-Site Request Forgery CSRF vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading...
WordPress Meks Easy Maps Plugin <= 2.1.3 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Easy Maps Type Plugin Vulnerable versions = 2.1.3 Fixed in 2.1.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e349a998361e Credits Muhammad Daffa...
WordPress Meks Easy Ads Widget Plugin <= 2.0.7 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Easy Ads Widget Type Plugin Vulnerable versions = 2.0.7 Fixed in 2.0.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID f9a03944bc97 Credits Muhammad Daffa...
WordPress Meks ThemeForest Smart Widget Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks ThemeForest Smart Widget Type Plugin Vulnerable versions = 1.4 Fixed in 1.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2367191a142b Credits Muhammad...
WordPress Meks Smart Author Widget Plugin <= 1.1.3 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Smart Author Widget Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.1.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7a6fdc5ff131 Credits Muhammad...
WordPress Meks Easy Photo Feed Widget Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Easy Photo Feed Widget Type Plugin Vulnerable versions = 1.2.7 Fixed in 1.2.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2e63e6df17a9 Credits Muhamma...
WordPress Meks Video Importer Plugin <= 1.0.10 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Video Importer Type Plugin Vulnerable versions = 1.0.10 Fixed in 1.0.11 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1adedef969c6 Credits Muhammad Daff...
WordPress Meks Time Ago Plugin <= 1.1.6 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Time Ago Type Plugin Vulnerable versions = 1.1.6 Fixed in 1.1.7 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 035367ec544d Credits Muhammad Daffa Requir...
WordPress Meks Audio Player Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Audio Player Type Plugin Vulnerable versions = 1.2 Fixed in 1.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 885bf7c11f1b Credits Muhammad Daffa Requir...
WordPress Meks Simple Flickr Widget Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Simple Flickr Widget Type Plugin Vulnerable versions = 1.2 Fixed in 1.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ad7aa5e63051 Credits Muhammad Daff...
WordPress Meks Smart Social Widget Plugin <= 1.6 is vulnerable to Cross Site Request Forgery (CSRF)
Software Meks Smart Social Widget Type Plugin Vulnerable versions = 1.6 Fixed in 1.6.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25989 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b2f058eee5d5 Credits Muhammad Daf...