WordPress Slider Pro Plugin <= 4.8.6 is vulnerable to Broken Access Control

Software Slider Pro Type Plugin Vulnerable versions = 4.8.6 Fixed in 4.8.7 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-41865 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7155f5ea390e Credits Abdi Pranata Required privilege...

WordPress Stagtools Plugin <= 2.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Stagtools Type Plugin Vulnerable versions = 2.3.7 Fixed in 2.3.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-41868 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3bb564ac29eb Credits Le Ngoc Anh Required privilege...

WordPress Directorist Plugin <= 7.7.1 is vulnerable to CSV Injection

Software Directorist Type Plugin Vulnerable versions = 7.7.1 Fixed in 7.7.2 OWASP Top 10 A1: Injection Classification CSV Injection CVE CVE-2023-41798 Patch priority Low CVSS severity Low 5.1 Developer Claim ownership PSID 305b807eea54 Credits Rafshanzani Suhada Required privilege Editor Publishe...

WordPress Easy WP Cleaner Plugin <= 1.9 is vulnerable to Cross Site Request Forgery (CSRF)

Software Easy WP Cleaner Type Plugin Vulnerable versions = 1.9 Fixed in 2.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-41697 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 515d5d148a8d Credits Mika Required privilege...