Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:22 a.m.8 views

CVE-2023-4318

The Herd Effects WordPress plugin before 5.2.4 does not have CSRF when deleting its items, which could allow attackers to make logged in admins delete arbitrary effects via a CSRF attack...

4.3CVSS6.8AI score0.00218EPSS
Exploits2
NVD
NVD
added 2023/09/11 8:15 p.m.22 views

CVE-2023-4318

The Herd Effects WordPress plugin before 5.2.4 does not have CSRF when deleting its items, which could allow attackers to make logged in admins delete arbitrary effects via a CSRF attack...

4.3CVSS4.7AI score0.00218EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/09/11 7:46 p.m.12 views

CVE-2023-4318 Herd Effects < 5.2.4 - Effect Deletion via CSRF

The Herd Effects WordPress plugin before 5.2.4 does not have CSRF when deleting its items, which could allow attackers to make logged in admins delete arbitrary effects via a CSRF attack...

4.6AI score0.00218EPSS
Exploits2References1
CVE
CVE
added 2023/09/11 7:46 p.m.42 views

CVE-2023-4318

The Herd Effects WordPress plugin (vulnerable:

4.3CVSS4.9AI score0.00218EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2023/08/25 12:0 a.m.15 views

WordPress Herd Effects Plugin < 5.2.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Herd Effects Type Plugin Vulnerable versions 5.2.4 Fixed in 5.2.4 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-4318 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3c6da81b7acf Credits Erwan LR WPScan Required...

4.3CVSS6.6AI score0.00218EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder