3 matches found
WordPress Pray For Me Plugin <= 1.0.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Pray For Me Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-3965 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 75aaa6747a5e Credits Bob Matyas Required...
node-js-1408 (=1.0.0), node-js-1409 (=1.0.0) potentially affected by CVE-2023-39619 via node-email-check (=1.0.4)
node-email-check NPM version =1.0.4 is affected by a known vulnerability. The following packages have a transitive dependency on node-email-check and may be impacted: - node-js-1408 =1.0.0 - node-js-1409 =1.0.0 Source cves: CVE-2023-39619 Source advisory: OSV:GHSA-9242-6P36-6256...
WordPress Easy Newsletter Signups Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)
Software Easy Newsletter Signups Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a29cfa1e302e Credits Rafie Muhammad Patchstack...