4 matches found
CVE-2023-45763
Cross-Site Request Forgery CSRF vulnerability in Taggbox plugin = 2.9 versions...
Taggbox <= 3.1 - Cross-Site Request Forgery
Description The Taggbox plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.1. This is due to missing or incorrect nonce validation on one of its functions. This makes it possible for unauthenticated attackers to invoke this function via a forged...
CVE-2023-45763 WordPress Taggbox Plugin <= 2.9 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Taggbox plugin = 2.9 versions...
CVE-2023-45763
CVE-2023-45763 corresponds to a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress Taggbox plugin, reported for versions up to and including 2.9. The consolidated evidence from connected sources attributes the issue to CSRF weaknesses (missing/incorrect nonce validation) that could ...