5 matches found
CVE-2023-36679
Server-Side Request Forgery SSRF vulnerability in Brainstorm Force Spectra.This issue affects Spectra: from n/a through 2.6.6...
CVE-2023-36679
CVE-2023-36679 affects Spectra (WordPress plugin) up to version 2.6.6. Reported as Server-Side Request Forgery (SSRF) with authenticated access (Contributor+). Root cause cited in Patchstack entry as SSRF via template_importer/import_wpforms functionality; fixed in version 2.6.7. Severity listed ...
CVE-2023-36679 WordPress Spectra plugin <= 2.6.6 - Server Side Request Forgery (SSRF) vulnerability
Server-Side Request Forgery SSRF vulnerability in Brainstorm Force Spectra.This issue affects Spectra: from n/a through 2.6.6...
CVE-2023-36679 WordPress Spectra plugin <= 2.6.6 - Server Side Request Forgery (SSRF) vulnerability
Server-Side Request Forgery SSRF vulnerability in Brainstorm Force Spectra.This issue affects Spectra: from n/a through 2.6.6...
WordPress Spectra Plugin <= 2.6.6 is vulnerable to Server Side Request Forgery (SSRF)
Software Spectra Type Plugin Vulnerable versions = 2.6.6 Fixed in 2.6.7 OWASP Top 10 A5: Broken Access Control Classification Server Side Request Forgery SSRF CVE CVE-2023-36679 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID e637edbf897c Credits Rafie Muhammad Patchstack...