18 matches found
EUVD-2023-52788
Malicious code in bioql PyPI...
EUVD-2023-26833
Malicious code in bioql PyPI...
EUVD-2023-53168
Malicious code in bioql PyPI...
CVE-2023-48755
Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...
CVE-2023-22704
Reflected Cross-Site Scripting XSS vulnerability in Michael Winkler teachPress plugin = 8.1.8 versions...
CVE-2023-52129
Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...
CVE-2023-52129 WordPress teachPress Plugin <= 9.0.4 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...
CVE-2023-49163
Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.5...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.5...
CVE-2023-49163
CVE-2023-49163: teachPress for WordPress is affected up to version 9.0.5 by a Cross-Site Request Forgery (CSRF) in delete_database() that can enable unauthenticated actions. Patch: upgrade to 9.0.6 (fixes CSRF issue). The vulnerability is documented as CSRF with unauthenticated context and has be...
CVE-2023-48755
Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...
CVE-2023-48755
Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Michael Winkler teachPress.This issue affects teachPress: from n/a through 9.0.4...
CVE-2023-36501
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Michael Winkler teachPress plugin = 9.0.2 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Michael Winkler teachPress plugin = 9.0.2 versions...
CVE-2023-36501
The CVE-2023-36501 entry concerns the WordPress teachPress plugin (affected versions ≤ 9.0.2) and describes an unauthenticated, reflected Cross-Site Scripting (XSS) vulnerability via meta_field_id and cite_id. The issue is confirmed in multiple sources (Patchstack and CVE/NVD references) with a r...
CVE-2023-22704
Reflected Cross-Site Scripting XSS vulnerability in Michael Winkler teachPress plugin = 8.1.8 versions...
CVE-2023-22704
Reflected Cross-Site Scripting XSS vulnerability in Michael Winkler teachPress plugin = 8.1.8 versions...