Lucene search
K

4 matches found

Circl
Circl
added 2025/02/19 8:17 a.m.9 views

CVE-2025-0865

creationtimestamp| type| source ---|---|--- 2025-02-19 08:17:00+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lijdkuo3ev23 2025-02-19 12:03:10+00:00| seen| https://t.me/cvedetector/18424...

6.5CVSS8.7AI score0.00258EPSS
Exploits0References2
NVD
NVD
added 2025/02/19 8:15 a.m.8 views

CVE-2025-0865

The WP Media Category Management plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 2.0 to 2.3.3. This is due to missing or incorrect nonce validation on the wpmcmhandleactionsettings function. This makes it possible for unauthenticated attackers to alter plugin settings...

6.5CVSS0.00258EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/02/19 7:32 a.m.6 views

CVE-2025-0865 WP Media Category Management 2.0 - 2.3.3 - Cross-Site Request Forgery to Settings Update

The WP Media Category Management plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 2.0 to 2.3.3. This is due to missing or incorrect nonce validation on the wpmcmhandleactionsettings function. This makes it possible for unauthenticated attackers to alter plugin settings...

6.5CVSS6.2AI score0.00258EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/02/19 7:32 a.m.23 views

CVE-2025-0865 WP Media Category Management 2.0 - 2.3.3 - Cross-Site Request Forgery to Settings Update

The WP Media Category Management plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 2.0 to 2.3.3. This is due to missing or incorrect nonce validation on the wpmcmhandleactionsettings function. This makes it possible for unauthenticated attackers to alter plugin settings...

6.5CVSS0.00258EPSS
Exploits0References6
Rows per page
Query Builder