2 matches found
PT-2026-3575
Name of the Vulnerable Software and Affected Versions NotificationX plugin for WordPress versions through 3.1.11 Description The NotificationX plugin for WordPress has a flaw that allows unauthorized modification of data. A missing capability check on the ''regenerate'' and ''reset'' REST API...
WordPress DancePress (TRWA) plugin <= 3.1.11 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin DancePress TRWA versions = 3.1.11...