CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Cvelist•added 2023/12/18 10:53 p.m.•16 views

CVE-2023-47558 WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Mahlamusa Who Hit The Page – Hit Counter allows SQL Injection.This issue affects Who Hit The Page – Hit Counter: from n/a through 1.4.14.3...

7.6CVSS8.1AI score0.0014EPSS

Exploits0References1

NVD•added 2023/10/16 3:15 p.m.•15 views

CVE-2023-46087

Cross-Site Request Forgery CSRF vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...

8.8CVSS5.8AI score0.00147EPSS

Exploits0References1

OSV•added 2023/10/16 3:15 p.m.•1 views

CVE-2023-46087

Cross-Site Request Forgery CSRF vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...

8.8CVSS7.3AI score

Exploits0References1

Prion•added 2023/10/16 3:15 p.m.•18 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...

6.8CVSS8.8AI score0.00147EPSS

Exploits0References1Affected Software1

CVE•added 2023/10/16 2:28 p.m.•40 views

CVE-2023-46087

CVE-2023-46087 describes a CSRF vulnerability in the WordPress plugin “Who Hit The Page – Hit Counter” by Mahlamusa, affecting versions 1.4.14.3 or apply vendor-provided CSRF mitigations. The CVE entry does not provide exploit specifics beyond the CSRF description, and the vulnerability impact i...

8.8CVSS6.4AI score0.00147EPSS

Exploits0References1Affected Software1

CVE•added 2023/08/30 3:23 p.m.•42 views

CVE-2023-25466

CVE-2023-25466 applies to the WordPress plugin Mahlamusa Who Hit The Page – Hit Counter, affected versions ≤ 1.4.14.3. Reported as unauthenticated, reflected Cross-Site Scripting (XSS). Remediation guidance from PT-2023-20084 indicates upgrading to a version higher than 1.4.14.3 (or disabling the...

7.1CVSS6AI score0.00088EPSS

Exploits1References1Affected Software1

Cvelist•added 2023/08/30 3:23 p.m.•16 views

CVE-2023-25466 WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin = 1.4.14.3 versions...

5.8CVSS6.3AI score0.00088EPSS

Exploits1References1

Patchstack•added 2023/06/16 12:0 a.m.•7 views

WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to Cross Site Scripting (XSS)

Software Who Hit The Page – Hit Counter Type Plugin Vulnerable versions = 1.4.14.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25466 Patch priority Medium CVSS severity Medium 5.8 Developer Claim ownership PSID 01e8a810fef2 Credits...

7.1CVSS5.6AI score0.00088EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by