EUVD-2024-29316

Malicious code in bioql PyPI...

CVE-2024-31427

Cross-Site Request Forgery CSRF vulnerability in Marker.Io Marker.Io.This issue affects Marker.Io : from n/a through 1.1.8...

Marker.io < 1.1.9 - Cross-Site Request Forgery

Description The Marker.io plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.8. This is due to missing or incorrect nonce validation on the markeriosaveoption function. This makes it possible for unauthenticated attackers to update the plugin's...

CVE-2024-31427

Cross-Site Request Forgery CSRF vulnerability in Marker.Io Marker.Io.This issue affects Marker.Io : from n/a through 1.1.8...

CVE-2024-31427 WordPress Marker.io plugin <= 1.1.8 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Marker.Io Marker.Io.This issue affects Marker.Io : from n/a through 1.1.8...

CVE-2024-31427

CVE-2024-31427 is a CSRF vulnerability affecting the Marker.Io WordPress plugin, with versions up to 1.1.8. Based on the provided metrics, the CVSS v3.1 base score is 4.3 (Medium) and the attack vector is network with user interaction required. The Initial Description lists no public patch/detail...

CVE-2024-31427 WordPress Marker.io plugin <= 1.1.8 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Marker.Io Marker.Io.This issue affects Marker.Io : from n/a through 1.1.8...

WordPress Plugin Marker.io 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. WordPress Plugin Marker.io...

PT-2024-24068 · Marker.Io · Marker.Io

Name of the Vulnerable Software and Affected Versions: Marker.Io versions 1.1.8 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application that the use...

WordPress Marker.io plugin <= 1.1.8 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Skalucy Patchstack Alliance in WordPress Plugin Marker.io versions = 1.1.8...

WordPress Marker.io Plugin <= 1.1.8 is vulnerable to Cross Site Request Forgery (CSRF)

Software Marker.io Type Plugin Vulnerable versions = 1.1.8 Fixed in 1.1.9 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-31427 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 14aece616952 Credits Skalucy Required privileg...

Marker.io < 1.1.7 - Cross-Site Request Forgery

Description The Marker.io plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.6. This is due to missing nonce validation on the markeriosavedestination and markeriosaveoption functions. This makes it possible for unauthenticated attackers to modi...