18 matches found
CVE-2026-25009
Missing Authorization vulnerability in raratheme Education Zone education-zone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Education Zone: from n/a through = 1.3.8...
EUVD-2026-15613
Missing Authorization vulnerability in raratheme Education Zone education-zone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Education Zone: from n/a through = 1.3.8...
CVE-2026-25009
Missing Authorization vulnerability in raratheme Education Zone education-zone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Education Zone: from n/a through = 1.3.8...
CVE-2026-25009
CVE-2026-25009 is a Missing Authorization vulnerability in Education Zone WordPress Theme. Affected software: Education Zone versions up to and including 1.3.8 (no details on earlier/other variants provided). Root cause: insufficient access control configuration allowing unauthorized actions on p...
CVE-2026-25009 WordPress Education Zone theme <= 1.3.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Education Zone education-zone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Education Zone: from n/a through = 1.3.8...
CVE-2026-25009 WordPress Education Zone theme <= 1.3.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in raratheme Education Zone education-zone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Education Zone: from n/a through = 1.3.8...
PT-2026-27882
Name of the Vulnerable Software and Affected Versions raratheme Education Zone versions through 1.3.8 Description An authorization issue exists in raratheme Education Zone. The issue involves exploiting incorrectly configured access control security levels. Recommendations Update Education Zone t...
WordPress plugin Education Zone 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
WordPress Education Zone theme <= 1.3.8 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by John P in WordPress Theme Education Zone versions = 1.3.8...
EUVD-2024-37051
Malicious code in bioql PyPI...
CVE-2024-37103
Cross-Site Request Forgery CSRF vulnerability in raratheme Education Zone education-zone allows Cross Site Request Forgery.This issue affects Education Zone: from n/a through = 1.3.4...
CVE-2024-37103
Cross-Site Request Forgery CSRF vulnerability in raratheme Education Zone education-zone allows Cross Site Request Forgery.This issue affects Education Zone: from n/a through = 1.3.4...
CVE-2024-37103
Cross-Site Request Forgery CSRF vulnerability in Rara Theme Education Zone allows Cross Site Request Forgery.This issue affects Education Zone: from n/a through 1.3.4...
CVE-2024-37103 WordPress Education Zone theme <= 1.3.4 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in raratheme Education Zone education-zone allows Cross Site Request Forgery.This issue affects Education Zone: from n/a through = 1.3.4...
PT-2025-2459
Name of the Vulnerable Software and Affected Versions: Rara Theme Education Zone versions 1.3.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This can be achieved by tricking the...
WordPress plugin Education Zone 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
WordPress Education Zone theme <= 1.3.4 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Theme Education Zone versions = 1.3.4...
WordPress Education Zone Theme <= 1.3.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Education Zone Type Theme Vulnerable versions = 1.3.4 Fixed in 1.3.5 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37103 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2d545d5d9f5a Credits Dhabaleshwar Das...