Lucene search
K

6 matches found

Patchstack
Patchstack
added 2026/02/02 7:59 p.m.7 views

WordPress Categorify plugin <= 1.0.7.4 - Cross-Site Request Forgery via categorifyAjaxRenameCategory vulnerability

Cross-Site Request Forgery via categorifyAjaxRenameCategory vulnerability discovered by Francesco Carlucci in WordPress Plugin Categorify versions = 1.0.7.4...

4.3CVSS6.5AI score0.00202EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 7:23 p.m.5 views

CVE-2021-24848

The mediamaticAjaxRenameCategory AJAX action of the Mediamatic WordPress plugin before 2.8.1, available to any authenticated user, does not sanitise the categoryID parameter before using it in a SQL statement, leading to an SQL injection...

8.8CVSS7.3AI score0.01318EPSS
Exploits2References1
OSV
OSV
added 2024/02/27 11:15 a.m.3 views

CVE-2024-1909

The Categorify plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.7.4. This is due to missing or incorrect nonce validation on the categorifyAjaxRenameCategory function. This makes it possible for unauthenticated attackers to rename categori...

4.3CVSS7.2AI score0.00202EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/02/27 12:0 a.m.6 views

PT-2024-18415 · WordPress · Categorify

Name of the Vulnerable Software and Affected Versions: Categorify plugin for WordPress versions up to, and including, 1.0.7.4 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the categorifyAjaxRenameCategory function. This allows...

4.3CVSS9.3AI score0.00202EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/02/27 12:0 a.m.4 views

WordPress Plugin Categorify Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.3CVSS6.6AI score0.00202EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/02/27 12:0 a.m.4 views

WordPress Plugin Categorify Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

4.3CVSS6.6AI score0.0034EPSS
Exploits0References3
Rows per page
Query Builder