Lucene search
K

4 matches found

Patchstack
Patchstack
added 2025/05/19 4:31 p.m.9 views

WordPress Year Make Model Search for WooCommerce plugin <= 1.0.11 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability

Cross Site Request Forgery CSRF to Settings Change vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Year Make Model Search for WooCommerce versions = 1.0.11...

4.3CVSS6.7AI score0.00128EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/19 2:45 p.m.11 views

CVE-2025-48265 WordPress Year Make Model Search for WooCommerce plugin <= 1.0.11 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability

Cross-Site Request Forgery CSRF vulnerability in Pektsekye Year Make Model Search for WooCommerce ymm-search allows Cross Site Request Forgery.This issue affects Year Make Model Search for WooCommerce: from n/a through = 1.0.11...

4.3CVSS5.9AI score0.00128EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/19 2:45 p.m.24 views

CVE-2025-48265 WordPress Year Make Model Search for WooCommerce plugin <= 1.0.11 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability

Cross-Site Request Forgery CSRF vulnerability in Pektsekye Year Make Model Search for WooCommerce ymm-search allows Cross Site Request Forgery.This issue affects Year Make Model Search for WooCommerce: from n/a through = 1.0.11...

4.3CVSS0.00128EPSS
Exploits0References1
CVE
CVE
added 2025/05/19 2:45 p.m.29 views

CVE-2025-48265

CVE-2025-48265 relates to a CSRF vulnerability in the WordPress plugin Year Make Model Search for WooCommerce (YMM Search for WooCommerce). Affected versions are listed as n/a through 1.0.11. The issue enables Cross-Site Request Forgery for actions affecting the plugin’s settings. Public assets i...

4.3CVSS5.9AI score0.00128EPSS
Exploits0References1
Rows per page
Query Builder