NPM: Better Auth: OAuth callback accepts mismatched `state` when cookie-backed state storage is used without PKCE

NPM: Better Auth: OAuth callback accepts mismatched state when cookie-backed state storage is used without PKCE vulnerability discovered by ? in WordPress Npm better-auth versions 1.6.2...

Nim 跨站脚本漏洞

Nim is a statically typed programming language from the Nim community. A security vulnerability exists in versions of Nim prior to 1.6.2. An attacker exploited the vulnerability to perform a cross-site scripting attack...

PT-2022-22771 · WordPress · Role Based Pricing For Woocommerce

Name of the Vulnerable Software and Affected Versions: Role Based Pricing for WooCommerce WordPress plugin versions prior to 1.6.2 Description: The issue allows any authenticated users, such as subscribers, to upload arbitrary files, including PHP, due to the lack of authorization, proper CSRF...

PT-2004-1012 · Mah-Jong · Mah-Jong

Name of the Vulnerable Software and Affected Versions: mah-jong versions prior to 1.6.2 Description: The issue allows remote attackers to cause a denial of service, resulting in a server crash. This is achieved via a missing argument, which triggers a null pointer dereference. Multiple...