Lucene search
K

24 matches found

Cvelist
Cvelist
added 2023/05/03 7:33 a.m.30 views

CVE-2023-22691 WordPress Category Specific RSS feed Subscription Plugin <= v2.1 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin = v2.1 versions...

4.3CVSS9AI score0.00271EPSS
Exploits0References1
CVE
CVE
added 2023/05/03 7:33 a.m.54 views

CVE-2023-22691

CVE-2023-22691 affects the WordPress plugin Category Specific RSS feed Subscription (Tips and Tricks HQ) &lt;= v2.1. A CSRF vulnerability exists in settings/credential-related actions due to missing CSRF checks, enabling unauthenticated attackers to induce actions on behalf of admins. Patch sourc...

8.8CVSS6.6AI score0.00271EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2022/06/30 12:0 a.m.29 views

WordPress Icegram plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. icegram is a subscription plugin used in it. WordPress plugin is an...

5.4CVSS2.3AI score0.00558EPSS
Exploits2References1
CNVD
CNVD
added 2019/07/18 12:0 a.m.3 views

WordPress Category Specific RSS feed Subscription plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Category Specific RSS feed Subscription is an RSS feed plugin used in it. A cross-site request forgery vulnerability exists in WordPres...

8.8CVSS6.7AI score0.00846EPSS
Exploits0References1
Rows per page
Query Builder