6 matches found
CVE-2025-60113
CVE-2025-60113 The provided connected document set confirms a Cross-Site Request Forgery (CSRF) vulnerability affecting the WordPress plugin Groovy Menu (Free), specifically in versions up to 1.4.3. The vulnerability details and affected component align with the CVE entry, which states CSRF expos...
WordPress Page Parts Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)
Software Page Parts Type Plugin Vulnerable versions = 1.4.3 Fixed in 1.4.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11360 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6c5273fd367a Credits vgo0 Required privileg...
WordPress Omnipress Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)
Software Omnipress Type Plugin Vulnerable versions = 1.4.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49278 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 27e910451326 Credits Khalid Yusuf Required privilege Contributor...
WordPress Backup Migration Plugin <= 1.4.3 is vulnerable to Sensitive Data Exposure
Software Backup Migration Type Plugin Vulnerable versions = 1.4.3 Fixed in 1.4.4 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-32686 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 6f8f6222b4f0 Credits emad...
WordPress WordPress Backup & Migration Plugin <= 1.4.3 is vulnerable to Broken Access Control
Software WordPress Backup & Migration Type Plugin Vulnerable versions = 1.4.3 Fixed in 1.4.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-52183 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID e20ae588b69a Credits Abdi Pranata...
WordPress Uji Popup Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)
Software Uji Popup Type Plugin Vulnerable versions = 1.4.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23641 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 59d88f6966b4 Credits István Márton Required privileg...