CVE-2024-53775

CVE-2024-53775 is a Cross-Site Request Forgery (CSRF) vulnerability in DancePress (TRWA) for WordPress. The vulnerability affects DancePress (TRWA) versions up to and including 3.1.11. The connected sources (NVD, Red Hat, CVE lists, Patchstack) confirm the CSRF issue and affected version range; n...

WordPress DancePress (TRWA) plugin <= 3.1.11 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin DancePress TRWA versions = 3.1.11...

WordPress DancePress (TRWA) Plugin <= 2.4.6.3 is vulnerable to Cross Site Scripting (XSS)

Software DancePress TRWA Type Plugin Vulnerable versions = 2.4.6.3 Fixed in 3.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8e1b70af829b Credits Rafie Muhammad Patchstack Required...

WordPress DancePress (TRWA) plugin <= 2.4.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress DancePress TRWA plugin versions = 2.4.1. Solution No patched version available...

WordPress DancePress (TRWA) plugin <= 2.4.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress DancePress TRWA plugin versions = 2.4.1. Solution No patched version available...