CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-31211

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00065EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:2 a.m.•3 views

CVE-2023-27435

Cross-Site Request Forgery CSRF vulnerability in Sami Ahmed Siddiqui HTTP Auth plugin = 0.3.2 versions...

8.8CVSS7.1AI score0.00065EPSS

Exploits0References1

Prion•added 2023/10/03 2:15 p.m.•18 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Sami Ahmed Siddiqui HTTP Auth plugin = 0.3.2 versions...

6.8CVSS8.8AI score0.00065EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/03 1:7 p.m.•16 views

CVE-2023-27435 WordPress HTTP Auth Plugin <= 0.3.2 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Sami Ahmed Siddiqui HTTP Auth plugin = 0.3.2 versions...

6.3CVSS9.1AI score0.00065EPSS

Exploits0References1

CVE•added 2023/10/03 1:7 p.m.•46 views

CVE-2023-27435

The CVE-2023-27435 entry concerns the WordPress HTTP Auth Plugin, vulnerable in versions 0.3.2, with patch 1.0.0 indicated as the fix. Exploitability details in the connected docs show unauthenticated access as a consideration; exploitation status is not definitively provided beyond the CSRF cla...

8.8CVSS7.5AI score0.00065EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/10/03 12:0 a.m.•3 views

PT-2023-21124 · Unknown · Sami Ahmed Siddiqui Http Auth Plugin

Name of the Vulnerable Software and Affected Versions: Sami Ahmed Siddiqui HTTP Auth plugin versions 0.3.2 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended...

8.8CVSS8.7AI score0.00065EPSS

Exploits0References5

Patchstack•added 2023/07/26 12:0 a.m.•13 views

WordPress HTTP Auth Plugin <= 0.3.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software HTTP Auth Type Plugin Vulnerable versions = 0.3.2 Fixed in 1.0.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-27435 Patch priority Low CVSS severity Low 6.3 Developer Claim ownership PSID 3c605b41c95d Credits Mika Required privilege...

8.8CVSS6.6AI score0.00065EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by