6 matches found
EUVD-2024-37271
Malicious code in bioql PyPI...
CVE-2024-38345
A cross-site request forgery vulnerability exists in Sola Testimonials versions prior to 3.0.0. If this vulnerability is exploited, an attacker allows a user who logs in to the WordPress site where the affected plugin is enabled to access a malicious page. As a result, the user may perform...
CVE-2024-38345
CVE-2024-38345 describes a cross-site request forgery (CSRF) in Sola Testimonials for WordPress prior to 3.0.0. The vulnerability could allow a logged-in user on a WordPress site with the affected plugin enabled to access a malicious page and perform unintended actions. The CVSS vector (AV:N/AC:L...
CVE-2024-38345
A cross-site request forgery vulnerability exists in Sola Testimonials versions prior to 3.0.0. If this vulnerability is exploited, an attacker allows a user who logs in to the WordPress site where the affected plugin is enabled to access a malicious page. As a result, the user may perform...
PT-2024-27948 · WordPress · Sola Testimonials
Name of the Vulnerable Software and Affected Versions: Sola Testimonials versions prior to 3.0.0 Description: A cross-site request forgery issue exists, allowing an attacker to trick a user into accessing a malicious page when logged in to a WordPress site with the affected plugin enabled. This...
WordPress plugins "WP Tweet Walls" and "Sola Testimonials" vulnerable to cross-site request forgery
Overview WordPress plugins "WP Tweet Walls" and "Sola Testimonials" provided by Sola Plugins contain a cross-site request forgery vulnerability CWE-352. These vulnerabilities are reported by the following reporters, and JPCERT/CC coordinated with the developer under Information Security Early...