21 matches found
EUVD-2023-30313
Malicious code in bioql PyPI...
EUVD-2023-30324
Malicious code in bioql PyPI...
CVE-2023-26516
Cross-Site Request Forgery CSRF vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
CVE-2023-26527
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
CVE-2023-26516
Cross-Site Request Forgery CSRF vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
CVE-2023-26516
Cross-Site Request Forgery CSRF vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
CVE-2023-26516 WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
CVE-2023-26516
CVE-2023-26516 is a CSRF vulnerability in the WordPress WPIndeed Debug Assistant plugin (versions ≤ 1.4). The described root cause is unauthorized CSRF execution that can affect unauthenticated users, with impacts stated as high confidentiality, integrity, and availability by CVSS 3.1 metrics (8....
WordPress Plugin Debug Assistant Cross-Site Request Forgery Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists i...
PT-2023-20695 · WordPress · Wpindeed Debug Assistant
Name of the Vulnerable Software and Affected Versions: WPIndeed Debug Assistant plugin versions 1.4 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web...
CVE-2023-26527
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
CVE-2023-26527
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
CVE-2023-26527 WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
CVE-2023-26527
CVE-2023-26527 affects the WordPress plugin Debug Assistant (WPIndeed Debug Assistant) with a stored XSS vulnerability in versions
CVE-2023-26527 WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPIndeed Debug Assistant plugin = 1.4 versions...
WordPress plugin Debug Assistant 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...
WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Debug Assistant Type Plugin Vulnerable versions = 1.4 Fixed in 1.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-26516 Patch priority Low CVSS severity Low 8.8 Developer Claim ownership PSID 29fe448c29d4 Credits Prasanna V Balaji...
Debug Assistant < 1.5 - Administrator Account Creation via CSRF
The plugin does not have CSRF checks in the imltcreateadmin function, which could allow attackers to make logged in Admin users create new attacker-controlled Admin accounts via CSRF...
WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)
Software Debug Assistant Type Plugin Vulnerable versions = 1.4 Fixed in 1.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-26527 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a881348f2d40 Credits Prasanna V Balaji Required...