CVE-2024-21054

CVE-2024-21054 affects Oracle MySQL Server, specifically the Server: Optimizer component. Affected versions are 8.0.36 and prior and 8.3.0 and prior. The vulnerability is exploitable over the network by a high-privilege attacker and can cause a hang or crash (complete DOS) of MySQL Server, with C...

PT-2024-3447 · Oracle +4 · Mysql Server +3

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.36 and prior MySQL Server versions 8.3.0 and prior Description: The issue is related to the Server: Optimizer component of Oracle MySQL Server and is caused by inadequate access control. It allows a high-privileged...

PT-2024-3728 · Oracle +4 · Mysql Server +3

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.36 and prior MySQL Server versions 8.3.0 and prior Description: The issue is related to insufficient input validation in the Server: Optimizer component of Oracle MySQL Server. This can be exploited by a...

PT-2024-3731 · Oracle +4 · Mysql Server +3

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.36 and prior MySQL Server versions 8.3.0 and prior Description: The issue is related to insufficient input validation in the Server: Optimizer component of Oracle MySQL Server. A difficult to exploit vulnerability...

PT-2024-3448 · Oracle +4 · Mysql Server +3

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.0.36 and prior Oracle MySQL Server versions 8.3.0 and prior Description: The issue is related to the Server: Optimizer component of Oracle MySQL Server and is associated with inadequate access control. It allows...

PT-2024-3727 · Oracle +4 · Mysql Server +3

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.36 and prior MySQL Server versions 8.3.0 and prior Description: The issue is related to insufficient input validation in the Server: Optimizer component of Oracle MySQL Server. A difficult to exploit vulnerability...

WordPress Speed Optimizer plugin <= 7.4.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Speed Optimizer versions = 7.4.6...

WordPress Speed Optimizer Plugin <= 7.4.6 is vulnerable to Broken Access Control

Software Speed Optimizer Type Plugin Vulnerable versions = 7.4.6 Fixed in 7.5.0 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32532 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 4bd495bc61aa Credits Rafie Muhammad Patchstack...

CVE-2024-32106

Cross-Site Request Forgery CSRF vulnerability in WP Compress WP Compress – Image Optimizer All-In-One.This issue affects WP Compress – Image Optimizer All-In-One: from n/a through 6.10.35...

CVE-2024-32106

Cross-Site Request Forgery CSRF vulnerability in WP Compress WP Compress – Image Optimizer All-In-One.This issue affects WP Compress – Image Optimizer All-In-One: from n/a through 6.10.35...

CVE-2024-32106 WordPress WP Compress plugin <= 6.10.35 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Compress WP Compress – Image Optimizer All-In-One.This issue affects WP Compress – Image Optimizer All-In-One: from n/a through 6.10.35...

CVE-2024-32106 WordPress WP Compress plugin <= 6.10.35 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Compress WP Compress – Image Optimizer All-In-One.This issue affects WP Compress – Image Optimizer All-In-One: from n/a through 6.10.35...

CVE-2024-32106

CVE-2024-32106 is a CSRF vulnerability in the WordPress plugin WP Compress – Image Optimizer (All-In-One) . Connected documents confirm the issue affects versions up to 6.10.35 . The available sources describe the vulnerability as CSRF with no publicly documented exploit details in the provided m...

WordPress WP Compress – Image Optimizer [All-In-One] Plugin <= 6.10.35 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Compress – Image Optimizer All-In-One Type Plugin Vulnerable versions = 6.10.35 Fixed in 6.11.01 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32106 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4ae0be74f8a...

PT-2024-24412 · WordPress · Wp Compress – Image Optimizer [All-In-One]

Name of the Vulnerable Software and Affected Versions: WP Compress – Image Optimizer All-In-One versions n/a through 6.10.35 Description: A Cross-Site Request Forgery CSRF issue affects the specified software. This type of issue allows an attacker to perform unintended actions on a web applicatio...

CVE-2024-31924

Cross-Site Request Forgery CSRF vulnerability in nosilver4u EWWW Image Optimizer ewww-image-optimizer.This issue affects EWWW Image Optimizer: from n/a through = 7.2.3...

CVE-2024-31924 WordPress EWWW Image Optimizer plugin <= 7.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in nosilver4u EWWW Image Optimizer ewww-image-optimizer.This issue affects EWWW Image Optimizer: from n/a through = 7.2.3...

CVE-2024-31924 WordPress EWWW Image Optimizer plugin <= 7.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in nosilver4u EWWW Image Optimizer ewww-image-optimizer.This issue affects EWWW Image Optimizer: from n/a through = 7.2.3...

CVE-2024-31924

CVE-2024-31924 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the WordPress plugin EWWW Image Optimizer. Affected versions are 7.2.3 and earlier (listed as from n/a through 7.2.3). Public references indicate a remediation in version 7.3.0 (VendorFix), implying users should upgrade...

WordPress EWWW Image Optimizer plugin <= 7.2.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin EWWW Image Optimizer versions = 7.2.3...