CVE-2024-30541 WordPress LWS Optimize plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in LWS LWS Optimize.This issue affects LWS Optimize: from n/a through 1.9.1...

WordPress Plugin LWS Optimize 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin LWS Optimize A...

WordPress LWS Optimize plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin LWS Optimize versions = 1.9.1...

WordPress LWS Optimize Plugin <= 1.9.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software LWS Optimize Type Plugin Vulnerable versions = 1.9.1 Fixed in 2.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-30541 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 77212549cdac Credits Dhabaleshwar Das Require...

WordPress JCH Optimize Plugin <= 4.0.0 is vulnerable to Broken Access Control

Software JCH Optimize Type Plugin Vulnerable versions = 4.0.0 Fixed in 4.0.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-30481 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 290d3805d22d Credits Abdi Pranata Required privileg...

PT-2024-16622 · WordPress · Imagerecycle

Name of the Vulnerable Software and Affected Versions: ImageRecycle pdf & image compression plugin for WordPress versions up to, and including, 3.1.13 Description: The issue allows authenticated attackers with subscriber-level access and above to modify image optimization settings due to a missin...

CVE-2023-51508

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Database Cleaner: Clean, Optimize & Repair.This issue affects Database Cleaner: Clean, Optimize & Repair: from n/a through 0.9.8...

CVE-2023-51508 WordPress Database Cleaner Plugin <= 0.9.8 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Database Cleaner: Clean, Optimize & Repair.This issue affects Database Cleaner: Clean, Optimize & Repair: from n/a through 0.9.8...

Optimize Database after Deleting Revisions < 5.1 - Missing Authorization via 'odb_csv_download'

Description The Optimize Database after Deleting Revisions plugin for WordPress is vulnerable to information disclosure in versions up to, and including, 5.0.110. This is due to a missing capability check on the 'odbcsvdownload' function which is hooked via admininit. This makes it possible for...

CVE-2023-25980

Cross-Site Request Forgery CSRF vulnerability in CAGE Web Design | Rolf van Gelder Optimize Database after Deleting Revisions plugin = 5.1 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in CAGE Web Design | Rolf van Gelder Optimize Database after Deleting Revisions plugin = 5.1 versions...

CVE-2023-25980 WordPress Optimize Database after Deleting Revisions Plugin <= 5.1 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in CAGE Web Design | Rolf van Gelder Optimize Database after Deleting Revisions plugin = 5.1 versions...

CVE-2023-25980 WordPress Optimize Database after Deleting Revisions Plugin <= 5.1 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in CAGE Web Design | Rolf van Gelder Optimize Database after Deleting Revisions plugin = 5.1 versions...

CVE-2023-25980

CVE-2023-25980 concerns the WordPress plugin “Optimize Database after Deleting Revisions” (CAGE Web Design) with CSRF vulnerability in versions

WordPress Optimize Database after Deleting Revisions Plugin <= 5.0.110 is vulnerable to Broken Access Control

Software Optimize Database after Deleting Revisions Type Plugin Vulnerable versions = 5.0.110 Fixed in 5.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE N/A Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID fb16d5eb812a Credits WordFence...

WordPress Plugin rvg-optimize-database Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...

Malicious code in optimize-procurement-and-inventory-with-ai (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1d4a974419b1ab87d44f6d1c5cfd7fac97f037b476328f114d344113cf6bbd6f The OpenSSF Package Analysis project identified 'optimize-procurement-and-inventory-with-ai' @ 6.1.8 npm as malicious. It is considered maliciou...

CVE-2023-4852

A vulnerability was found in IBOS OA 4.5.5 and classified as critical. This issue affects some unknown processing of the file ?r=dashboard/database/optimize. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...

IBOS SQL Injection Vulnerability

IBOS is a collaborative office management system from Shenzhen Boosi Xiechuang Network Technology Co. A SQL injection vulnerability exists in IBOS version 4.5.5, which originates from an SQL injection attack via the ?r=dashboard/database/optimize location...

PT-2023-30861 · Ibos Oa · Ibos Oa

Name of the Vulnerable Software and Affected Versions: IBOS OA version 4.5.5 Description: A critical issue affects the processing of the file ?r=dashboard/database/optimize, leading to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be use...