Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2022/11/03 12:0 a.m.4 views

PT-2022-23353 · Unknown · David Cole Simple Seo

Name of the Vulnerable Software and Affected Versions: David Cole Simple SEO plugin versions prior to 1.8.13 Description: The issue concerns a Missing Authorization and Cross-Site Request Forgery CSRF vulnerability, as well as a Broken Access Control vulnerability. This allows attackers to...

5.4CVSS5.6AI score0.00211EPSS
Exploits0References4
Patchstack
Patchstack
added 2022/10/20 12:0 a.m.23 views

WordPress Simple SEO plugin <= 1.8.12 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability leading to Sitemap Creation/Deletion discovered by Mika Patchstack Alliance in WordPress Simple SEO plugin versions = 1.8.12. Solution Update the WordPress Simple SEO plugin to the latest available version at least 1.8.13...

5.4CVSS3.6AI score0.00239EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2022/10/20 12:0 a.m.35 views

WordPress Simple SEO plugin <= 1.8.12 - Broken Access Control vulnerability

Broken Access Control vulnerability leading to Sitemap Deletion/Creation discovered by Mika Patchstack Alliance in WordPress Simple SEO plugin versions = 1.8.12. Solution Update the WordPress Simple SEO plugin to the latest available version at least 1.8.13...

5.4CVSS3.9AI score0.00211EPSS
Exploits0Affected Software1
CVE
CVE
added 2018/03/19 9:0 p.m.39 views

CVE-2014-2675

CVE-2014-2675 concerns the WordPress WP HTML Sitemap plugin (version 1.2) and its file inc/AdminPage.php. The vulnerability is a Cross-Site Request Forgery (CSRF) that allows an attacker to hijack the administrator’s authentication to perform a sensitive action: deleting the sitemap via a request...

6.5CVSS6.7AI score0.00781EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2015/06/15 2:59 p.m.14 views

CVE-2015-4353

Cross-site request forgery CSRF vulnerability in the Custom Sitemap module for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete sitemaps via unspecified vectors...

5.8CVSS7.1AI score0.00649EPSS
Exploits0References3
Rows per page
Query Builder