CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

RedhatCVE•added 2025/05/23 5:17 a.m.•2 views

CVE-2023-30484

Cross-Site Request Forgery CSRF vulnerability in uPress Enable Accessibility plugin = 1.4 versions...

8.8CVSS7AI score0.00106EPSS

Exploits0References1

Vulnrichment•added 2025/01/07 4:22 a.m.•1 views

CVE-2024-9208 Enable Accessibility <= 1.4.1 - Reflected Cross-Site Scripting

The Enable Accessibility plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg & removequeryarg without appropriate escaping on the URL in all versions up to, and including, 1.4.1. This makes it possible for unauthenticated attackers to inject arbitrar...

6.1CVSS5.7AI score0.01989EPSS

Exploits0References2

CVE•added 2025/01/07 4:22 a.m.•39 views

CVE-2024-9208

The CVE-2024-9208 issue affects the WordPress Enable Accessibility plugin (versions up to and including 1.4.1). It describes a Reflected Cross-Site Scripting vulnerability caused by insufficient escaping when using add_query_arg and remove_query_arg in the URL, enabling unauthenticated attackers ...

6.1CVSS6.1AI score0.01989EPSS

Exploits0References2

Cvelist•added 2025/01/07 4:22 a.m.•13 views

CVE-2024-9208 Enable Accessibility <= 1.4.1 - Reflected Cross-Site Scripting

6.1CVSS0.01989EPSS

Exploits0References2

Positive Technologies•added 2025/01/07 12:0 a.m.•1 views

PT-2025-3712 · WordPress · Enable Accessibility

Name of the Vulnerable Software and Affected Versions: Enable Accessibility plugin for WordPress versions up to, and including, 1.4.1 Description: The issue arises from the use of add query arg and remove query arg without proper escaping on the URL, allowing unauthenticated attackers to inject...

6.1CVSS6.7AI score0.01989EPSS

Exploits0References5

CNNVD•added 2025/01/07 12:0 a.m.•2 views

WordPress plugin Enable Accessibility 跨站脚本漏洞

WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Enable Accessibility version 1.4.1 and previous versions of the existence of cross-site...

6.1CVSS6.7AI score0.01989EPSS

Exploits0References2

Patchstack•added 2025/01/06 4:54 p.m.•3 views

WordPress Enable Accessibility plugin <= 1.4.1 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Enable Accessibility versions = 1.4.1...

6.1CVSS6.3AI score0.01989EPSS

Exploits0References1Affected Software1

OSV•added 2023/05/25 10:15 a.m.•1 views

CVE-2023-30484

Cross-Site Request Forgery CSRF vulnerability in uPress Enable Accessibility plugin = 1.4 versions...

8.8CVSS7.3AI score

Exploits0References1

NVD•added 2023/05/25 10:15 a.m.•10 views

CVE-2023-30484

Cross-Site Request Forgery CSRF vulnerability in uPress Enable Accessibility plugin = 1.4 versions...

8.8CVSS5.8AI score0.00106EPSS

Exploits0References1

Cvelist•added 2023/05/25 9:32 a.m.•13 views

CVE-2023-30484 WordPress Enable Accessibility Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in uPress Enable Accessibility plugin = 1.4 versions...

4.3CVSS9AI score0.00106EPSS

Exploits0References1

CVE•added 2023/05/25 9:32 a.m.•46 views

CVE-2023-30484

CVE-2023-30484 is a CSRF vulnerability in the WordPress plugin Enable Accessibility affecting versions

8.8CVSS6.5AI score0.00106EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/05/25 12:0 a.m.•3 views

PT-2023-22722 · WordPress · Upress Enable Accessibility

Name of the Vulnerable Software and Affected Versions: uPress Enable Accessibility plugin versions = 1.4 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...

8.8CVSS8.8AI score0.00106EPSS

Exploits0References3

CNNVD•added 2023/05/25 12:0 a.m.•0 views

WordPress plugin Enable Accessibility 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists i...

8.8CVSS8.1AI score0.00106EPSS

Exploits0References2

Patchstack•added 2023/04/13 12:0 a.m.•11 views

WordPress Enable Accessibility Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Enable Accessibility Type Plugin Vulnerable versions = 1.4 Fixed in 1.4.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-30484 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 264b882f6d50 Credits Abdi Pranata...

8.8CVSS6.6AI score0.00106EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by