2 matches found
PT-2025-12016
Name of the Vulnerable Software and Affected Versions: Age Gate plugin for WordPress versions up to, and including, 3.5.3 Description: The Age Gate plugin for WordPress is vulnerable to Local PHP File Inclusion via the lang parameter. This allows unauthenticated attackers to include and execute...
PT-2024-24167 · WordPress · Easy Property Listings
Name of the Vulnerable Software and Affected Versions: Easy Property Listings WordPress plugin versions prior to 3.5.4 Description: The issue is related to a lack of CSRF check when deleting contacts in bulk, which could allow attackers to make a logged-in admin delete them via a CSRF attack. Thi...