EUVD-2023-32408

Malicious code in bioql PyPI...

CVE-2023-45639 WordPress Sort SearchResult By Title Plugin <= 10.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Codex-m Sort SearchResult By Title plugin = 10.0 versions...

WordPress Sort SearchResult By Title Plugin <= 10.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Sort SearchResult By Title Type Plugin Vulnerable versions = 10.0 Fixed in 11.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-45639 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3afb47c8e79f Credits Skalucy...

CVE-2023-28773

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Kolja Nolte Secondary Title plugin = 2.0.9.1 versions...

Cross site scripting

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Kolja Nolte Secondary Title plugin = 2.0.9.1 versions...

CVE-2023-28773

CVE-2023-28773 affects WordPress’ Secondary Title plugin up to version 2.0.9.1, which is vulnerable to stored Cross-Site Scripting (XSS) when an authenticated Contributor interacts with the plugin. The issue is fixed in version 2.1.0. The Patchstack entry confirms vulnerable versions, the fixed r...

CVE-2023-28773 WordPress Secondary Title Plugin <= 2.0.9.1 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Kolja Nolte Secondary Title plugin = 2.0.9.1 versions...