3 matches found
WordPress GMAce Plugin <= 1.5.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software GMAce Type Plugin Vulnerable versions = 1.5.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-23861 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 5e49c5295a88 Credits Mika Required privilege...
Apache Superset 安全漏洞
Apache Superset is a data visualization and data exploration platform from the Apache Foundation USA. A security vulnerability exists in Apache Superset versions 1.5.2 and earlier and 2.0.0, which originates from an authenticated attacker with write access to a CSS template that can create a reco...
Elasticsearch Arbitrary File Disclosure Vulnerability
Elasticsearch is the Netherlands Elasticsearch company's set of open source distributed RESTful search engine built on Lucene , it is mainly used in cloud computing , and supports the use of JSON over HTTP for data indexing . A security vulnerability exists in Elasticsearch versions prior to 1.5....