Lucene search
K

93 matches found

CNNVD
CNNVD
added 2024/04/24 12:0 a.m.3 views

WordPress plugin JetFormBuilder 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.3CVSS6.2AI score0.00373EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2023/12/07 12:0 a.m.17 views

JetFormBuilder < 3.1.5 - Unauthenticated Content Injection

Description The JetFormBuilder — Dynamic Blocks Form Builder plugin for WordPress is vulnerable to content injection in all versions up to, and including, 3.1.4. This makes it possible for unauthenticated attackers to inject content onto the site...

6.8AI score0.00373EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/11/28 12:0 a.m.13 views

WordPress JetFormBuilder Plugin <= 3.1.4 is vulnerable to Content Injection

Software JetFormBuilder Type Plugin Vulnerable versions = 3.1.4 Fixed in 3.1.5 OWASP Top 10 A3: Injection Classification Content Injection CVE CVE-2023-48763 Patch priority Low CVSS severity Low 5.3 Developer Crocoblock PSID fd2d4da6e79b Credits Revan Arifio Required privilege Unauthenticated...

5.3CVSS6.8AI score0.00373EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/07/10 12:0 a.m.12 views

WordPress JetFormBuilder Plugin <= 3.0.8 is vulnerable to Privilege Escalation

Software JetFormBuilder Type Plugin Vulnerable versions = 3.0.8 Fixed in 3.0.9 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2023-37866 Patch priority Medium CVSS severity Medium 7.2 Developer Crocoblock PSID bb75400351be Credits Rafie...

7.2CVSS6.6AI score0.00611EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/05/28 6:15 p.m.2 views

CVE-2023-33212

Cross-Site Request Forgery CSRF vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin = 3.0.6 versions...

8.8CVSS7.3AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2023/05/28 6:15 p.m.14 views

CVE-2023-33212

Cross-Site Request Forgery CSRF vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin = 3.0.6 versions...

8.8CVSS5.8AI score0.00256EPSS
Exploits0References1
Prion
Prion
added 2023/05/28 6:15 p.m.20 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin = 3.0.6 versions...

6.8CVSS8.7AI score0.00256EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/28 5:20 p.m.14 views

CVE-2023-33212 WordPress JetFormBuilder Plugin <= 3.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin = 3.0.6 versions...

4.3CVSS7.1AI score0.00256EPSS
Exploits0References1
CVE
CVE
added 2023/05/28 5:20 p.m.51 views

CVE-2023-33212

CVE-2023-33212 : Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin with version &lt;= 3.0.6 contains a CSRF vulnerability (unauthenticated). The issue is mitigated by upgrading to version 3.0.7 or later. Multiple sources confirm the vulnerability details and patch, e.g., PatchStack n...

8.8CVSS6.4AI score0.00256EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/28 5:20 p.m.25 views

CVE-2023-33212 WordPress JetFormBuilder Plugin <= 3.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin = 3.0.6 versions...

4.3CVSS9AI score0.00256EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/28 12:0 a.m.5 views

WordPress plugin JetFormBuilder — Dynamic Blocks Form Builder 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

8.8CVSS8.1AI score0.00256EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/05/28 12:0 a.m.7 views

PT-2023-24223 · Crocoblock · Crocoblock Jetformbuilder

Name of the Vulnerable Software and Affected Versions: Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin versions 3.0.6 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into...

8.8CVSS8.8AI score0.00256EPSS
Exploits0References3
Patchstack
Patchstack
added 2023/05/22 12:0 a.m.16 views

WordPress JetFormBuilder Plugin <= 3.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software JetFormBuilder Type Plugin Vulnerable versions = 3.0.6 Fixed in 3.0.7 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-33212 Patch priority Low CVSS severity Low 4.3 Developer Crocoblock PSID 7e5a8125e34f Credits Nguyen Xuan Chien Require...

8.8CVSS6.6AI score0.00256EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder