4 matches found
WordPress WC Pickup Store plugin <= 1.8.9 - Settings Change Vulnerability
Settings Change Vulnerability discovered by Mika in WordPress Plugin WC Pickup Store versions = 1.8.9...
CVE-2025-30912 WordPress Float menu plugin <= 6.1.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability
Cross-Site Request Forgery CSRF vulnerability in Wow-Company Float menu float-menu allows Cross Site Request Forgery.This issue affects Float menu: from n/a through = 6.1.2...
WordPress FunnelKit Checkout Plugin <= 3.10.3 is vulnerable to Settings Change
Software FunnelKit Checkout Type Plugin Vulnerable versions = 3.10.3 Fixed in 3.11.0 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2023-51671 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID f63332e6c6a9 Credits Dave Jong Patchstack Required...
CVE-2022-40132
Cross-Site Request Forgery CSRF vulnerability in Seriously Simple Podcasting plugin = 2.16.0 at WordPress, leading to plugin settings change...