9 matches found
CVE-2023-7074
The WP SOCIAL BOOKMARK MENU WordPress plugin through 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2023-7074 WP Social Bookmark Menu <= 1.2 - Settings Update via CSRF
The WP SOCIAL BOOKMARK MENU WordPress plugin through 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2023-7074
The CVE refers to WP Social Bookmark Menu
WordPress plugin WP SOCIAL BOOKMARK MENU security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
WordPress WP Social Bookmark Menu Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software WP Social Bookmark Menu Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-7074 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ca5c286b56c4 Credits Daniel Ruf...
Social Bookmark CSRF Vulnerability
Exploit for php platform in category web applications Exploit Title: Social Bookmark CSRF Author: Jonturk75 Vendor or Software Link: http://www.scripts.com/viewscript/social-bookmark-script/28963/ Category:: webapps Demo : http://www.e-soft24.com/scripts/social-bookmark/admin Greetz: Inj3ct0r...
Sql injection
SQL injection vulnerability in TIMTAB social bookmark icons timtabsociable 2.0.4 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2008-6695
CVE-2008-6695 affects the TIMTAB social bookmark icons (timtab_sociable) TYPO3 extension (versions 2.0.4 and earlier). The root cause is an SQL injection vulnerability that allows remote attackers to execute arbitrary SQL commands via unknown vectors. Impact is high priority (remote access with p...
Quicksilver Social Bookmark information leak
User login and pasword are logged to Console.log file...