3 matches found
CVE-2023-4731
creationtimestamp| type| source ---|---|--- 2024-03-12 11:31:39+00:00| seen| https://t.me/ctinow/205544 2024-03-12 11:36:34+00:00| seen| https://t.me/ctinow/205551...
CVE-2023-4731
CVE-2023-4731 relates to the LadiApp plugin for WordPress. The Red Hat and WordPress Threat Intel entries confirm a CSRF vulnerability in versions up to 4.4 caused by a missing nonce check in init_endpoint(), wired through the init hook. This allows unauthenticated attackers to forge requests tha...
WordPress LadiApp Plugin <= 4.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software LadiApp Type Plugin Vulnerable versions = 4.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-4731 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9e10faf3494b Credits GiongfNef Required privilege...