Lucene search
K

26 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:10 a.m.4 views

CVE-2023-28417

Missing Authorization vulnerability in AlexaCRM Dynamics 365 Integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamics 365 Integration: from n/a through 1.3.12...

5.4CVSS8AI score0.00351EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:35 a.m.4 views

CVE-2024-12583

The Dynamics 365 Integration plugin for WordPress is vulnerable to Remote Code Execution and Arbitrary File Read in all versions up to, and including, 1.3.23 via Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render function. This makes it...

9.9CVSS9.6AI score0.0137EPSS
Exploits0References1
NVD
NVD
added 2025/01/04 9:15 a.m.5 views

CVE-2024-12583

The Dynamics 365 Integration plugin for WordPress is vulnerable to Remote Code Execution and Arbitrary File Read in all versions up to, and including, 1.3.23 via Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render function. This makes it...

9.9CVSS0.0137EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/04 8:22 a.m.7 views

CVE-2024-12583 Dynamics 365 Integration <= 1.3.23 - Authenticated (Contributor+) Remote Code Execution and Arbitrary File Read via Twig Server-Side Template Injection

The Dynamics 365 Integration plugin for WordPress is vulnerable to Remote Code Execution and Arbitrary File Read in all versions up to, and including, 1.3.23 via Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render function. This makes it...

9.9CVSS9.6AI score0.0137EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/04 8:22 a.m.107 views

CVE-2024-12583 Dynamics 365 Integration <= 1.3.23 - Authenticated (Contributor+) Remote Code Execution and Arbitrary File Read via Twig Server-Side Template Injection

The Dynamics 365 Integration plugin for WordPress is vulnerable to Remote Code Execution and Arbitrary File Read in all versions up to, and including, 1.3.23 via Twig Server-Side Template Injection. This is due to missing input validation and sanitization on the render function. This makes it...

9.9CVSS0.0137EPSS
Exploits0References3
CVE
CVE
added 2025/01/04 8:22 a.m.90 views

CVE-2024-12583

CVE-2024-12583 affects the Dynamics 365 Integration plugin for WordPress (versions up to and including 1.3.23). Root cause: missing input validation on the render function enables Twig Server-Side Template Injection. Impact: authenticated attackers with Contributor-level access and above can exec...

9.9CVSS9.6AI score0.0137EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/04 12:0 a.m.2 views

WordPress plugin Dynamics 365 Integration 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.9CVSS9.1AI score0.0137EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/01/03 10:30 p.m.3 views

WordPress Dynamics 365 Integration plugin <= 1.3.23 - Authenticated (Contributor+) Remote Code Execution and Arbitrary File Read via Twig Server-Side Template Injection vulnerability

Authenticated Contributor+ Remote Code Execution and Arbitrary File Read via Twig Server-Side Template Injection vulnerability discovered by Peter Thaleikis in WordPress Plugin Dynamics 365 Integration versions = 1.3.23...

9.9CVSS7.8AI score0.0137EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/12/09 1:15 p.m.9 views

CVE-2023-29422

Missing Authorization vulnerability in AlexaCRM Dynamics 365 Integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamics 365 Integration: from n/a through 1.3.13...

4.3CVSS0.00371EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/12/09 1:15 p.m.3 views

CVE-2023-29422

Missing Authorization vulnerability in alexacrm Dynamics 365 Integration integration-dynamics allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamics 365 Integration: from n/a through = 1.3.13...

4.3CVSS5.8AI score0.00371EPSS
Exploits0References3
NVD
NVD
added 2024/12/09 1:15 p.m.6 views

CVE-2023-28417

Missing Authorization vulnerability in AlexaCRM Dynamics 365 Integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamics 365 Integration: from n/a through 1.3.12...

5.4CVSS0.00351EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/09 11:31 a.m.21 views

CVE-2023-28417 WordPress Dynamics 365 Integration plugin <= 1.3.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in AlexaCRM Dynamics 365 Integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamics 365 Integration: from n/a through 1.3.12...

5.4CVSS0.00351EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 11:31 a.m.5 views

CVE-2023-28417 WordPress Dynamics 365 Integration plugin <= 1.3.12 - Broken Access Control vulnerability

Missing Authorization vulnerability in alexacrm Dynamics 365 Integration integration-dynamics allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamics 365 Integration: from n/a through = 1.3.12...

5.4CVSS7.3AI score0.00351EPSS
Exploits0References1
CVE
CVE
added 2024/12/09 11:31 a.m.38 views

CVE-2023-29422

CVE-2023-29422 affects the WordPress Dynamics 365 Integration plugin (

4.3CVSS8.5AI score0.00371EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 11:31 a.m.8 views

CVE-2023-29422 WordPress Dynamics 365 Integration plugin <= 1.3.13 - Broken Access Control vulnerability

Missing Authorization vulnerability in AlexaCRM Dynamics 365 Integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamics 365 Integration: from n/a through 1.3.13...

4.3CVSS6.9AI score0.00371EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/09 11:31 a.m.13 views

CVE-2023-29422 WordPress Dynamics 365 Integration plugin <= 1.3.13 - Broken Access Control vulnerability

Missing Authorization vulnerability in AlexaCRM Dynamics 365 Integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dynamics 365 Integration: from n/a through 1.3.13...

4.3CVSS0.00371EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.3 views

PT-2024-12160 · Unknown · Alexacrm Dynamics 365 Integration

Name of the Vulnerable Software and Affected Versions: AlexaCRM Dynamics 365 Integration versions 1.3.12 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows the exploitation of incorrectly configured access control security levels. Recommendations:...

5.4CVSS8.7AI score0.00351EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.3 views

WordPress plugin Dynamics 365 Integration 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS8.2AI score0.00351EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.8 views

WordPress plugin Dynamics 365 Integration 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS8.8AI score0.00371EPSS
Exploits0References1
NVD
NVD
added 2024/05/14 3:39 p.m.13 views

CVE-2024-34550

Insertion of Sensitive Information into Log File vulnerability in AlexaCRM Dynamics 365 Integration.This issue affects Dynamics 365 Integration: from n/a through 1.3.17...

5.3CVSS5.8AI score0.00584EPSS
Exploits0References1
Rows per page
Query Builder