20 matches found
EUVD-2025-10474
Malicious code in bioql PyPI...
EUVD-2023-27878
Malicious code in bioql PyPI...
CVE-2023-23792
Cross-Site Request Forgery CSRF vulnerability in HasThemes Swatchly plugin = 1.2.0 versions...
CVE-2025-2719
The Swatchly – WooCommerce Variation Swatches for Products product attributes: Image swatch, Color swatches, Label swatches plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxdismiss function in versions 1.2.8 to 1.4.0. This makes ...
CVE-2025-2719
The Swatchly – WooCommerce Variation Swatches for Products product attributes: Image swatch, Color swatches, Label swatches plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxdismiss function in versions 1.2.8 to 1.4.0. This makes ...
CVE-2025-2719
CVE-2025-2719 concerns the Swatchly – WooCommerce Variation Swatches for Products plugin for WordPress. Versions 1.2.8 to 1.4.0 expose an unauthorized modification risk via a missing capability check in the ajax_dismiss function. This could allow authenticated attackers with Subscriber-level acce...
CVE-2025-2719 Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) 1.2.8 - 1.4.0 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update
The Swatchly – WooCommerce Variation Swatches for Products product attributes: Image swatch, Color swatches, Label swatches plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxdismiss function in versions 1.2.8 to 1.4.0. This makes ...
CVE-2025-2719 Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) 1.2.8 - 1.4.0 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update
The Swatchly – WooCommerce Variation Swatches for Products product attributes: Image swatch, Color swatches, Label swatches plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxdismiss function in versions 1.2.8 to 1.4.0. This makes ...
WordPress plugin Swatchly 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2025-15920
Name of the Vulnerable Software and Affected Versions: The Swatchly – WooCommerce Variation Swatches for Products plugin versions 1.2.8 through 1.4.0 Description: The issue allows authenticated attackers with Subscriber-level access and above to modify data due to a missing capability check on th...
WordPress Swatchly – WooCommerce Variation Swatches for Products plugin 1.2.8-1.4.0 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update vulnerability
Missing Authorization to Authenticated Subscriber+ Limited Options Update vulnerability discovered by kr0d in WordPress Plugin Swatchly – WooCommerce Variation Swatches for Products versions 1.2.8-1.4.0...
CVE-2023-23792
Cross-Site Request Forgery CSRF vulnerability in HasThemes Swatchly plugin = 1.2.0 versions...
CVE-2023-23792
Cross-Site Request Forgery CSRF vulnerability in HasThemes Swatchly plugin = 1.2.0 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in HasThemes Swatchly plugin = 1.2.0 versions...
CVE-2023-23792 WordPress Swatchly – WooCommerce Variation Swatches for Products Plugin <= 1.2.0 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in HasThemes Swatchly plugin = 1.2.0 versions...
CVE-2023-23792
CVE-2023-23792 covers a CSRF vulnerability in HasThemes Swatchly (WooCommerce Variation Swatches for Products) plugin for WordPress, affected versions = 1.2.1; as a workaround, monitor for patches and review references from Patchstack and CVE records.
CVE-2023-23792 WordPress Swatchly – WooCommerce Variation Swatches for Products Plugin <= 1.2.0 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in HasThemes Swatchly plugin = 1.2.0 versions...
WordPress Plugin Swatchly 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
PT-2023-19207 · Hasthemes · Swatchly
Name of the Vulnerable Software and Affected Versions: HasThemes Swatchly plugin versions 1.2.0 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a w...
WordPress Swatchly – WooCommerce Variation Swatches for Products Plugin <= 1.2.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software Swatchly – WooCommerce Variation Swatches for Products Type Plugin Vulnerable versions = 1.2.0 Fixed in 1.2.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-23792 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...