transmute-core security vulnerability

transmute-core is a library for building API generators for Python webframeworks. A security vulnerability exists in versions of transmute-core prior to 1.13.5, which stems from the presence of insecure YAML deserialization and allows attackers to execute arbitrary Python code...

PT-2023-17125 · WordPress · Custom Post Type Ui

Name of the Vulnerable Software and Affected Versions: Custom Post Type UI WordPress plugin versions prior to 1.13.5 Description: The issue arises from the plugin's failure to properly check for CSRF when sending debug information to a user-supplied email. This could allow attackers to make a...