30 matches found
EUVD-2023-27955
Malicious code in bioql PyPI...
EUVD-2023-23756
Malicious code in bioql PyPI...
EUVD-2023-27944
Malicious code in bioql PyPI...
CVE-2023-23872
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in German Mesky GMAce allows Path Traversal.This issue affects GMAce: from n/a through 1.5.2...
CVE-2023-1509
The GMAce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.2. This is due to missing nonce validation on the gmacemanagerserver function called via the wpajaxgmacemanager AJAX action. This makes it possible for unauthenticated attackers to...
CVE-2023-23872
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in German Mesky GMAce allows Path Traversal.This issue affects GMAce: from n/a through 1.5.2...
CVE-2023-23872 WordPress GMAce plugin <= 1.5.2 - Arbitrary File Download vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in German Mesky GMAce allows Path Traversal.This issue affects GMAce: from n/a through 1.5.2...
CVE-2023-23872 WordPress GMAce plugin <= 1.5.2 - Arbitrary File Download vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in German Mesky GMAce allows Path Traversal.This issue affects GMAce: from n/a through 1.5.2...
WordPress plugin GMAce 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...
CVE-2023-23861
Cross-Site Request Forgery CSRF vulnerability in German Mesky GMAce plugin = 1.5.2 versions...
CVE-2023-23861
Cross-Site Request Forgery CSRF vulnerability in German Mesky GMAce plugin = 1.5.2 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in German Mesky GMAce plugin = 1.5.2 versions...
CVE-2023-23861
CVE-2023-23861 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress GMAce plugin (GMAce) versions
CVE-2023-23861 WordPress GMAce Plugin <= 1.5.2 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in German Mesky GMAce plugin = 1.5.2 versions...
CVE-2023-23861 WordPress GMAce Plugin <= 1.5.2 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in German Mesky GMAce plugin = 1.5.2 versions...
CVE-2023-1509
The GMAce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.2. This is due to missing nonce validation on the gmacemanagerserver function called via the wpajaxgmacemanager AJAX action. This makes it possible for unauthenticated attackers to...
CVE-2023-1509
The GMAce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.2. This is due to missing nonce validation on the gmacemanagerserver function called via the wpajaxgmacemanager AJAX action. This makes it possible for unauthenticated attackers to...
CVE-2023-1509
The GMAce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.2. This is due to missing nonce validation on the gmacemanagerserver function called via the wpajaxgmacemanager AJAX action. This makes it possible for unauthenticated attackers to...
Cross site request forgery (csrf)
The GMAce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.2. This is due to missing nonce validation on the gmacemanagerserver function called via the wpajaxgmacemanager AJAX action. This makes it possible for unauthenticated attackers to...
CVE-2023-1509 GMAce <= 1.5.2 - Cross-Site Request Forgery to Arbitrary File Modification (Creation/Overwrite/Deletion)
The GMAce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.2. This is due to missing nonce validation on the gmacemanagerserver function called via the wpajaxgmacemanager AJAX action. This makes it possible for unauthenticated attackers to...