CVE-2024-44020

Missing Authorization vulnerability in Prasad Kirpekar WP Free SSL – Free SSL Certificate for WordPress and force HTTPS allows . This issue affects WP Free SSL – Free SSL Certificate for WordPress and force HTTPS: from n/a through 1.2.6...

WordPress WP Free SSL plugin <= 1.2.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin WP Free SSL – Free SSL Certificate for WordPress and force HTTPS versions = 1.2.7...

CVE-2024-5770

The WP Force SSL & HTTPS SSL Redirect plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajaxsavesetting' function in versions up to, and including, 1.66. This makes it possible for authenticated attackers, subscriber-level permission...

WordPress Really Simple SSL Plugin <= 7.2.3 is vulnerable to Server Side Request Forgery (SSRF)

Software Really Simple SSL Type Plugin Vulnerable versions = 7.2.3 Fixed in 8.0.0 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-31229 Patch priority Low CVSS severity Low 5.5 Developer Claim ownership PSID 76c7c2d9a771 Credits Anan...

CVE-2023-46095

Cross-Site Request Forgery CSRF vulnerability in Chetan Gole Smooth Scroll Links SSL plugin = 1.1.0 versions...

CVE-2023-46095 WordPress Smooth Scroll Links Plugin <= 1.1.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Chetan Gole Smooth Scroll Links SSL plugin = 1.1.0 versions...