CVE-2023-39989 WordPress Header Footer Code Manager Plugin <= 1.1.34 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in 99robots Header Footer Code Manager plugin = 1.1.34 versions...

WordPress Footer Plugin for Divi Plugin <= 3.3.5 is vulnerable to Cross Site Scripting (XSS)

Software Footer Plugin for Divi Type Plugin Vulnerable versions = 3.3.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c8dc1917f2df Credits Rafie Muhammad Patchstack...

WordPress Footer Plugin for Divi plugin <= 3.3.5 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Footer Plugin for Divi plugin versions = 3.3.5. Solution No patched version available...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Simple Sticky Footer plugin before 1.3.3 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 change plugin settings via unspecified vectors or conduct cross-site scripting XSS attac...

CVE-2014-9454

The CVE-2014-9454 entry concerns the WordPress plugin Simple Sticky Footer (before version 1.3.3). Multiple CSRF vulnerabilities allow remote attackers to hijack administrator sessions and perform actions such as changing plugin settings, with additional potential XSS via the simple_sf_width and ...

WordPress Simple Sticky Footer Plugin <= 1.3.2 - Multiple CSRF and XSS

Because of these cross site request forgery vulnerabilities, the attackers can hijack the authentication of administrators for requests. In that way they can change plugin settings via unspecified vectors or conduct cross-site scripting attacks. Solution Update the plugin...