6 matches found
EUVD-2023-26815
Malicious code in bioql PyPI...
CVE-2023-22686
Cross-Site Request Forgery CSRF vulnerability in TriniTronic Nice PayPal Button Lite plugin = 1.3.5 versions...
CVE-2023-22686
Cross-Site Request Forgery CSRF vulnerability in TriniTronic Nice PayPal Button Lite plugin = 1.3.5 versions...
CVE-2023-22686
CVE-2023-22686 affects the WordPress plugin “Nice PayPal Button Lite” (TriniTronic) up to version 1.3.5. The root cause is a CSRF vulnerability due to insufficient CSRF checks in the plugin, enabling an attacker to coax a user into performing unintended actions on a site the user is authenticated...
Nice PayPal Button Lite <= 1.3.5 - CSRF
The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...
WordPress Nice PayPal Button Lite Plugin <= 1.3.5 is vulnerable to Cross Site Request Forgery (CSRF)
Software Nice PayPal Button Lite Type Plugin Vulnerable versions = 1.3.5 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-22686 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 497c643d4eec Credits Mika Required...