7 matches found
CVE-2025-32547
Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects All push notification for WP: from n/a through = 1.5.3...
CVE-2025-32547
creationtimestamp| type| source ---|---|--- 2025-04-09 19:48:58+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114309735026280224...
CVE-2025-32547
Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects All push notification for WP: from n/a through = 1.5.3...
CVE-2025-32547
CVE-2025-32547 affects the WordPress plugin “All push notification for WP” (versions up to 1.5.3). The issue is described as a CSRF-to-SQL Injection vulnerability with an unpatched status in the public reports. The connected Wordfence post lists this CVE under “All push notification for WP
CVE-2025-32547 WordPress All push notification for WP Plugin <= 1.5.3 - CSRF to SQL Injection vulnerability
Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects All push notification for WP: from n/a through = 1.5.3...
CVE-2025-32547 WordPress All push notification for WP Plugin <= 1.5.3 - CSRF to SQL Injection vulnerability
Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects All push notification for WP: from n/a through = 1.5.3...
WordPress All push notification for WP Plugin <= 1.5.3 - CSRF to SQL Injection vulnerability
CSRF to SQL Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin All push notification for WP versions = 1.5.3...