5 matches found
EUVD-2024-49238
Malicious code in bioql PyPI...
CVE-2024-8520
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.6. This is due to missing or incorrect nonce validation on the admininit or...
WordPress Ultimate Member plugin <= 2.8.6 - Cross-Site Request Forgery to Membership Status Change vulnerability
Cross-Site Request Forgery to Membership Status Change vulnerability discovered by Jack Taylor in WordPress Plugin Ultimate Member versions = 2.8.6...
CVE-2024-8520 Ultimate Member <= 2.8.6 - Cross-Site Request Forgery to Membership Status Change
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.6. This is due to missing or incorrect nonce validation on the admininit or...
CVE-2023-3613 Guest accounts invited and added to channels by Welcomebot plugin
Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding users to channels allowing guest accounts to be added or invited to channels by default...