2 matches found
CVE-2023-36676
Missing Authorization vulnerability in Brainstorm Force Spectra.This issue affects Spectra: from n/a through 2.6.6...
CVE-2023-36679
CVE-2023-36679 affects Spectra (WordPress plugin) up to version 2.6.6. Reported as Server-Side Request Forgery (SSRF) with authenticated access (Contributor+). Root cause cited in Patchstack entry as SSRF via template_importer/import_wpforms functionality; fixed in version 2.6.7. Severity listed ...