125 matches found
WordPress eRoom – Zoom Meetings & Webinar plugin <= 1.4.18 - Missing Authorization to Information Exposure vulnerability
Missing Authorization to Information Exposure vulnerability discovered by Krzysztof Zając in WordPress Plugin eRoom versions = 1.4.18...
WordPress eRoom – Zoom Meetings & Webinar Plugin <= 1.4.18 is vulnerable to Broken Access Control
Software eRoom – Zoom Meetings & Webinar Type Plugin Vulnerable versions = 1.4.18 Fixed in 1.4.19 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-3275 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7f0c5109ca2f Credits Krzysztof...
eRoom – Zoom Meetings & Webinar < 1.4.19 - Missing Authorization to Information Exposure
Description The eRoom – Zoom Meetings & Webinars plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.18 via the searchposts function. This makes it possible for authenticated attackers, with subscriber access and higher, to obtain post...
WordPress eRoom – Zoom Meetings & Webinar Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)
Software eRoom – Zoom Meetings & Webinar Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b1f873edfbfb Credits Rafie Muhammad...
WordPress eRoom – Zoom Meetings & Webinar Plugin <= 1.4.6 is vulnerable to Broken Access Control
Software eRoom – Zoom Meetings & Webinar Type Plugin Vulnerable versions = 1.4.6 Fixed in 1.4.7 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-43472 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 5064cfd61ac8 Credits István...
PT-2022-7695 · Zoom · Eroom
Name of the Vulnerable Software and Affected Versions: eRoom – Zoom Meetings & Webinar versions 1.4.6 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. This can enable a remote...
WordPress eRoom–Zoom Meetings&Webinar plugin跨站请求伪造漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress eRoom-Zoom Meetings & Webinar plugin 1.3.7 an...
CVE-2022-25615
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...
CVE-2022-25615
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...
CVE-2022-25614
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.7 allows an attacker to Sync with Zoom Meetings...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.7 allows an attacker to Sync with Zoom Meetings...
CVE-2022-25614 WordPress eRoom plugin <= 1.3.7 - Cross-Site Request Forgery (CSRF) leading to Sync with Zoom Meetings vulnerability
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.7 allows an attacker to Sync with Zoom Meetings...
CVE-2022-25614
CVE-2022-25614 affects WordPress plugin StylemixThemes eRoom – Zoom Meetings & Webinar (
CVE-2022-25615 WordPress eRoom plugin <= 1.3.8 - Cross-Site Request Forgery (CSRF) vulnerability leading to Cache Deletion
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...
CVE-2022-25615
The CVE-2022-25615 entry applies to the WordPress plugin StylemixThemes eRoom – Zoom Meetings & Webinar (versions ≤ 1.3.8). The vulnerability is a Cross‑Site Request Forgery (CSRF) that can lead to cache deletion . The root cause is lack of CSRF protection during cache deletion operations, enabli...
CVE-2022-25615 WordPress eRoom plugin <= 1.3.8 - Cross-Site Request Forgery (CSRF) vulnerability leading to Cache Deletion
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...
CVE-2022-25615
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...
CVE-2022-25614
Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.7 allows an attacker to Sync with Zoom Meetings...
WordPress plugin 跨站请求伪造漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an open source application plugin for WordPress. A security vulnerability exists in the...