24 matches found
CVE-2023-25471
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
EUVD-2023-50840
Malicious code in bioql PyPI...
EUVD-2023-29426
Malicious code in bioql PyPI...
CVE-2023-46638
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
WCP OpenWeather <= 2.5.0 - Cross-Site Request Forgery
Description The WCP OpenWeather plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.5.0. This is due to missing or incorrect nonce validation on an unknown function. This makes it possible for unauthenticated attackers to perform an unknown...
CVE-2023-46638
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-46638
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-46638
CVE-2023-46638 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin WCP OpenWeather (Webcodin) for versions up to 2.5.0 . The CVE entry is supported by multiple connected sources, including NVD and Red Hat advisories, all describing CSRF in this plugin family. The Wordfenc...
CVE-2023-46638 WordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-46638 WordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
WordPress Plugin wcp-openweather Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software WCP OpenWeather Type Plugin Vulnerable versions = 2.5.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-46638 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 63c5a56a4d0f Credits Mika Required privile...
CVE-2023-25471
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-25471
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-25471 WordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
CVE-2023-25471
CVE-2023-25471 affects WordPress WCP OpenWeather Plugin (versions
CVE-2023-25471 WordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...
PT-2023-20089 · Webcodin · Webcodin Wcp Openweather Plugin
Name of the Vulnerable Software and Affected Versions: Webcodin WCP OpenWeather plugin versions = 2.5.0 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing...