Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:11 a.m.12 views

CVE-2023-32960

Cross-Site Request Forgery CSRF vulnerability in UpdraftPlus.Com, DavidAnderson UpdraftPlus WordPress Backup Plugin = 1.23.3 versions leads to sitewide Cross-Site Scripting XSS...

7.1CVSS6.7AI score0.00208EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2023/06/29 7:24 a.m.58 views

Critical Security Flaw in Social Login Plugin for WordPress Exposes Users' Accounts

A critical security flaw has been disclosed in miniOrange's Social Login and Register plugin for WordPress that could enable a malicious actor to log in as any user-provided information about email address is already known. Tracked as CVE-2023-2982 CVSS score: 9.8, the authentication bypass flaw...

7.2AI score0.46242EPSS
Exploits6
NVD
NVD
added 2023/06/22 1:15 p.m.47 views

CVE-2023-32960

Cross-Site Request Forgery CSRF vulnerability in UpdraftPlus.Com, DavidAnderson UpdraftPlus WordPress Backup Plugin = 1.23.3 versions leads to sitewide Cross-Site Scripting XSS...

7.1CVSS6.7AI score0.00208EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/22 12:51 p.m.44 views

CVE-2023-32960 WordPress UpdraftPlus Plugin <= 1.23.3 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in UpdraftPlus.Com, DavidAnderson UpdraftPlus WordPress Backup Plugin = 1.23.3 versions leads to sitewide Cross-Site Scripting XSS...

7.1CVSS6.8AI score0.00208EPSS
Exploits0References1
CVE
CVE
added 2023/06/22 12:51 p.m.71 views

CVE-2023-32960

CVE-2023-32960 affects the WordPress UpdraftPlus Backup Plugin prior to or up to version 1.23.3. The vulnerability is a CSRF that enables sitewide XSS when exploited by a logged-in user or via crafted requests, as described in multiple sources. The OpenVAS advisory notes a fix path at 1.23.4, whi...

7.1CVSS6.3AI score0.00208EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/05/18 12:0 a.m.21 views

WordPress UpdraftPlus Plugin <= 1.23.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software UpdraftPlus Type Plugin Vulnerable versions = 1.23.3 Fixed in 1.23.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-32960 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID d64e914c934f Credits Rafie Muhammad...

7.1CVSS6.7AI score0.00208EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder