Lucene search
K

4 matches found

NVD
NVD
added 2023/11/30 1:15 p.m.13 views

CVE-2023-48331

Cross-Site Request Forgery CSRF vulnerability in Stormhill Media MyBookTable Bookstore by Stormhill Media allows Cross Site Request Forgery.This issue affects MyBookTable Bookstore by Stormhill Media: from n/a through 3.3.4...

8.8CVSS0.00256EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/30 12:54 p.m.21 views

CVE-2023-48331 WordPress MyBookTable Bookstore Plugin <= 3.3.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Stormhill Media MyBookTable Bookstore by Stormhill Media allows Cross Site Request Forgery.This issue affects MyBookTable Bookstore by Stormhill Media: from n/a through 3.3.4...

4.3CVSS8.9AI score0.00256EPSS
Exploits0References1
CVE
CVE
added 2023/11/30 12:54 p.m.41 views

CVE-2023-48331

CVE-2023-48331 describes a CSRF vulnerability in the WordPress plugin MyBookTable Bookstore (Stormhill Media) up to version 3.3.4. The issue arises from a CSRF check omission in the mbt_api_key_refresh_ajax() flow, allowing unauthorized actions to be performed on affected installations. The entry...

8.8CVSS8.5AI score0.00256EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/11/23 12:0 a.m.11 views

WordPress MyBookTable Bookstore Plugin <= 3.3.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software MyBookTable Bookstore Type Plugin Vulnerable versions = 3.3.4 Fixed in 3.3.5 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-48331 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ac06dff1976c Credits Nguyen Xuan...

8.8CVSS7AI score0.00256EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder