Lucene search
K

125 matches found

Patchstack
Patchstack
added 2024/04/15 11:27 a.m.7 views

WordPress eRoom – Zoom Meetings & Webinar plugin <= 1.4.18 - Missing Authorization to Information Exposure vulnerability

Missing Authorization to Information Exposure vulnerability discovered by Krzysztof Zając in WordPress Plugin eRoom versions = 1.4.18...

4.3CVSS6.9AI score0.00534EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/15 12:0 a.m.12 views

WordPress eRoom – Zoom Meetings & Webinar Plugin <= 1.4.18 is vulnerable to Broken Access Control

Software eRoom – Zoom Meetings & Webinar Type Plugin Vulnerable versions = 1.4.18 Fixed in 1.4.19 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-3275 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7f0c5109ca2f Credits Krzysztof...

4.3CVSS6.9AI score0.00534EPSS
Exploits0References3Affected Software1
WPVulnDB
WPVulnDB
added 2024/04/12 12:0 a.m.20 views

eRoom – Zoom Meetings & Webinar < 1.4.19 - Missing Authorization to Information Exposure

Description The eRoom – Zoom Meetings & Webinars plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.18 via the searchposts function. This makes it possible for authenticated attackers, with subscriber access and higher, to obtain post...

4.3CVSS6.2AI score0.00534EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/07/19 12:0 a.m.5 views

WordPress eRoom – Zoom Meetings & Webinar Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

Software eRoom – Zoom Meetings & Webinar Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b1f873edfbfb Credits Rafie Muhammad...

5.8AI score0.00284EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/03/22 12:0 a.m.21 views

WordPress eRoom – Zoom Meetings & Webinar Plugin <= 1.4.6 is vulnerable to Broken Access Control

Software eRoom – Zoom Meetings & Webinar Type Plugin Vulnerable versions = 1.4.6 Fixed in 1.4.7 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-43472 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 5064cfd61ac8 Credits István...

6.3AI score0.00552EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/25 12:0 a.m.3 views

PT-2022-7695 · Zoom · Eroom

Name of the Vulnerable Software and Affected Versions: eRoom – Zoom Meetings & Webinar versions 1.4.6 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. This can enable a remote...

4.3CVSS9.4AI score0.00552EPSS
Exploits0References6
CNVD
CNVD
added 2022/04/13 12:0 a.m.19 views

WordPress eRoom–Zoom Meetings&Webinar plugin跨站请求伪造漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress eRoom-Zoom Meetings & Webinar plugin 1.3.7 an...

4.3CVSS2.3AI score0.00432EPSS
Exploits0References1
NVD
NVD
added 2022/04/11 8:15 p.m.23 views

CVE-2022-25615

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...

4.3CVSS0.00432EPSS
Exploits0References2
OSV
OSV
added 2022/04/11 8:15 p.m.3 views

CVE-2022-25615

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...

4.3CVSS5.8AI score0.00432EPSS
Exploits0References2
OSV
OSV
added 2022/04/11 8:15 p.m.8 views

CVE-2022-25614

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.7 allows an attacker to Sync with Zoom Meetings...

4.3CVSS5.8AI score0.00432EPSS
Exploits0References2
Prion
Prion
added 2022/04/11 8:15 p.m.16 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...

4.3CVSS4.8AI score0.00432EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/04/11 8:15 p.m.16 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.7 allows an attacker to Sync with Zoom Meetings...

4.3CVSS4.7AI score0.00432EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/11 7:38 p.m.24 views

CVE-2022-25614 WordPress eRoom plugin <= 1.3.7 - Cross-Site Request Forgery (CSRF) leading to Sync with Zoom Meetings vulnerability

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.7 allows an attacker to Sync with Zoom Meetings...

4.3CVSS5AI score0.00432EPSS
Exploits0References2
CVE
CVE
added 2022/04/11 7:38 p.m.90 views

CVE-2022-25614

CVE-2022-25614 affects WordPress plugin StylemixThemes eRoom – Zoom Meetings & Webinar (

4.3CVSS4.6AI score0.00432EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/04/11 7:38 p.m.5 views

CVE-2022-25615 WordPress eRoom plugin <= 1.3.8 - Cross-Site Request Forgery (CSRF) vulnerability leading to Cache Deletion

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...

4.3CVSS4.7AI score0.00432EPSS
Exploits0References2
CVE
CVE
added 2022/04/11 7:38 p.m.84 views

CVE-2022-25615

The CVE-2022-25615 entry applies to the WordPress plugin StylemixThemes eRoom – Zoom Meetings & Webinar (versions ≤ 1.3.8). The vulnerability is a Cross‑Site Request Forgery (CSRF) that can lead to cache deletion . The root cause is lack of CSRF protection during cache deletion operations, enabli...

4.3CVSS4.7AI score0.00432EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/11 7:38 p.m.28 views

CVE-2022-25615 WordPress eRoom plugin <= 1.3.8 - Cross-Site Request Forgery (CSRF) vulnerability leading to Cache Deletion

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...

4.3CVSS5.1AI score0.00432EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/04/11 6:31 p.m.5 views

CVE-2022-25615

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.8 allows cache deletion...

4.3CVSS4.9AI score0.00432EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/04/11 5:58 p.m.7 views

CVE-2022-25614

Cross-Site Request Forgery CSRF in StylemixThemes eRoom – Zoom Meetings & Webinar WordPress plugin = 1.3.7 allows an attacker to Sync with Zoom Meetings...

4.3CVSS4.9AI score0.00432EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.6 views

WordPress plugin 跨站请求伪造漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an open source application plugin for WordPress. A security vulnerability exists in the...

4.3CVSS5.1AI score0.00432EPSS
Exploits0References3
Rows per page
Query Builder