2 matches found
CVE-2023-6492
The Simple Sitemap – Create a Responsive HTML Sitemap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.5.13. This is due to missing or incorrect nonce validation in the 'adminnotices' hook found in class-settings.php. This makes it possible...
WordPress Simple Sitemap – Create a Responsive HTML Sitemap Plugin <= 3.5.13 is vulnerable to Cross Site Request Forgery (CSRF)
Software Simple Sitemap – Create a Responsive HTML Sitemap Type Plugin Vulnerable versions = 3.5.13 Fixed in 3.5.14 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-6492 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...