CVE-2024-6405 Floating Social Buttons <= 1.5 - Cross-Site Request Forgery

The Floating Social Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5. This is due to missing or incorrect nonce validation on the floatingsocialbuttonsoption function. This makes it possible for unauthenticated attackers to update...

CNStats 2.9 (who_r.php bj) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ============================================================== CNStats 2.9 whor.php bj Remote File Inclusion Vulnerability ============================================================== CNStats 2.9 whor.php Remote File Include Vulnerabilit...