Lucene search
+L

27 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:34 p.m.10 views

CVE-2026-9723

The Google Plus One Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.0.2. This is due to missing or incorrect nonce validation on the googlePlusOneAdmin function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS5.3AI score0.00128EPSS
Exploits0References1
NVD
NVD
added 2026/06/02 9:16 a.m.19 views

CVE-2026-9723

The Google Plus One Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.0.2. This is due to missing or incorrect nonce validation on the googlePlusOneAdmin function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS0.00128EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/02 7:48 a.m.45 views

CVE-2026-9723 Google Plus One Bottom <= 0.0.2 - Cross-Site Request Forgery to Plugin Settings Update via Settings Page

The Google Plus One Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.0.2. This is due to missing or incorrect nonce validation on the googlePlusOneAdmin function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS0.00128EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/02 7:48 a.m.9 views

CVE-2026-9723

The Google Plus One Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.0.2. This is due to missing or incorrect nonce validation on the googlePlusOneAdmin function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS5.7AI score0.00128EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/06/02 7:48 a.m.12 views

CVE-2026-9723 Google Plus One Bottom <= 0.0.2 - Cross-Site Request Forgery to Plugin Settings Update via Settings Page

The Google Plus One Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.0.2. This is due to missing or incorrect nonce validation on the googlePlusOneAdmin function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS5.7AI score0.00128EPSS
Exploits0References4
CVE
CVE
added 2026/06/02 7:48 a.m.19 views

CVE-2026-9723

CVE-2026-9723 affects the WordPress plugin Google Plus One Bottom (versions

4.3CVSS5.7AI score0.00128EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/02 7:48 a.m.13 views

EUVD-2026-33890

The Google Plus One Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.0.2. This is due to missing or incorrect nonce validation on the googlePlusOneAdmin function. This makes it possible for unauthenticated attackers to modify the...

4.3CVSS5.7AI score0.00128EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.14 views

WordPress plugin Google Plus One Bottom 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

4.3CVSS5.4AI score0.00128EPSS
Exploits0References4
Patchstack
Patchstack
added 2026/06/01 7:43 p.m.15 views

WordPress Google Plus One Bottom plugin <= 0.0.2 - Cross-Site Request Forgery to Plugin Settings Update vulnerability

Cross-Site Request Forgery to Plugin Settings Update vulnerability discovered by swat in WordPress Plugin Google Plus One Bottom versions = 0.0.2...

4.3CVSS5.8AI score0.00128EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/12/16 4:16 p.m.7 views

AZL-72661 CVE-2025-68308 affecting package kernel for versions less than 6.6.119.3-1

In the Linux kernel, the following vulnerability has been resolved: can: kvaserusb: leaf: Fix potential infinite loop in command parsers The kvaserusbleafwaitcmd and kvaserusbleafreadbulkcallback functions contain logic to zero-length commands. These commands are used to align data to the USB...

5.6AI score0.00167EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-12392

Malicious code in bioql PyPI...

6.1CVSS7AI score0.00277EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.7 views

PT-2025-33804

Content removed...

8.5CVSS6.6AI score0.07142EPSS
Exploits3References531
Packet Storm News
Packet Storm News
added 2025/07/18 12:0 a.m.3 views

Kintsugi: Decentralized E2EE Key Recovery

Kintsugi is a protocol for key recovery, allowing a user to regain access to end-to-end encrypted data after they have lost their device, but still have their potentially low-entropy password. Existing E2EE key recovery methods, such as those deployed by Signal and WhatsApp, centralize trust by...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/27 7:0 a.m.15 views

CVE-2025-3866

The Add Google +1 Plus one social share Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on the google-plus-one-share-button page. This makes it possible for unauthenticated...

6.1CVSS6.5AI score0.00277EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/25 6:45 a.m.5 views

CVE-2025-3866 Add Google +1 (Plus one) social share Button <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Add Google +1 Plus one social share Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on the google-plus-one-share-button page. This makes it possible for unauthenticated...

6.1CVSS6.7AI score0.00277EPSS
Exploits0References3
CVE
CVE
added 2025/04/25 6:45 a.m.66 views

CVE-2025-3866

CVE-2025-3866 affects the WordPress plugin Add Google +1 (Plus One) social share Button, version

6.1CVSS6AI score0.00277EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/25 6:45 a.m.19 views

CVE-2025-3866 Add Google +1 (Plus one) social share Button <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Add Google +1 Plus one social share Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. This is due to missing or incorrect nonce validation on the google-plus-one-share-button page. This makes it possible for unauthenticated...

6.1CVSS0.00277EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/25 12:0 a.m.5 views

PT-2025-17888 · WordPress · Add Google +1 (Plus One) Social Share Button

Name of the Vulnerable Software and Affected Versions: Add Google +1 Plus one social share Button plugin for WordPress version 1.0.0 and earlier Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the google-plus-one-share-button page...

6.1CVSS6.7AI score0.00277EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/04/25 12:0 a.m.6 views

WordPress plugin Add Google +1 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Add Google...

6.1CVSS6.5AI score0.00277EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/04/24 9:29 p.m.5 views

WordPress Add Google +1 (Plus one) social share Button plugin <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability discovered by johska in WordPress Plugin Add Google +1 Plus one social share Button versions = 1.0.0...

6.1CVSS6.4AI score0.00277EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder