Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-25040

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00292EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:32 p.m.6 views

CVE-2022-1759

The RB Internal Links WordPress plugin through 2.0.16 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to the lack of sanitisation and escap...

5.4CVSS5.5AI score0.00292EPSS
Exploits2References1
CNVD
CNVD
added 2022/06/15 12:0 a.m.16 views

WordPress RB Internal Links plugin cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

5.4CVSS5.3AI score0.00292EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/06/13 1:15 p.m.7 views

CVE-2022-1759

The RB Internal Links WordPress plugin through 2.0.16 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to the lack of sanitisation and escap...

5.4CVSS6.1AI score0.00292EPSS
Exploits2References2
NVD
NVD
added 2022/06/13 1:15 p.m.24 views

CVE-2022-1759

The RB Internal Links WordPress plugin through 2.0.16 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to the lack of sanitisation and escap...

5.4CVSS0.00292EPSS
Exploits2References1
OSV
OSV
added 2022/06/13 1:15 p.m.5 views

CVE-2022-1759

The RB Internal Links WordPress plugin through 2.0.16 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to the lack of sanitisation and escap...

5.4CVSS5.8AI score0.00292EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/06/13 12:42 p.m.22 views

CVE-2022-1759 RB Internal Links <= 2.0.16 - Stored Cross-Site Scripting via CSRF

The RB Internal Links WordPress plugin through 2.0.16 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to the lack of sanitisation and escap...

5.5AI score0.00292EPSS
Exploits2References1
CVE
CVE
added 2022/06/13 12:42 p.m.73 views

CVE-2022-1759

The CVE pertains to the WordPress plugin RB Internal Links (versions up to 2.0.16). The issue is a CSRF deficiency when updating plugin settings, enabling a logged-in attacker to induce an admin to modify settings, and it also enables Stored Cross-Site Scripting due to insufficient sanitisation/e...

5.4CVSS5.2AI score0.00292EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.9 views

WordPress plugin RB Internal Links 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

5.4CVSS5.5AI score0.00292EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2022/05/23 12:0 a.m.13 views

RB Internal Links <= 2.0.16 - Stored Cross-Site Scripting via CSRF

The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, as well as perform Stored Cross-Site Scripting attacks due to the lack of sanitisation and escaping PoC...

5.4CVSS4.1AI score0.00292EPSS
Exploits2Affected Software1
Patchstack
Patchstack
added 2022/05/23 12:0 a.m.20 views

WordPress RB Internal Links plugin <= 2.0.16 - Stored Cross-Site Scripting (XSS) via Cross-Site Request Forgery (CSRF) vulnerability

Stored Cross-Site Scripting XSS via Cross-Site Request Forgery CSRF vulnerability discovered by Daniel Ruf in WordPress RB Internal Links plugin versions = 2.0.16. Solution Deactivate and delete. This plugin has been closed as of May 17, 2022 and is not available for download. This closure is...

5.4CVSS2.3AI score0.00292EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder