Lucene search
+L

71 matches found

Patchstack
Patchstack
added 2025/07/23 9:48 p.m.7 views

WordPress WebinarIgnition plugin <= 4.03.32 - Unauthenticated Login Token Generation to Authentication Bypass vulnerability

Unauthenticated Login Token Generation to Authentication Bypass vulnerability discovered by kr0d in WordPress Plugin WebinarIgnition versions = 4.03.32...

9.8CVSS6.6AI score0.00984EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 10:10 a.m.11 views

CVE-2024-32445

Cross-Site Request Forgery CSRF vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition.This issue affects WebinarIgnition: from n/a through = 3.05.8...

8.8CVSS5.9AI score0.00236EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:0 a.m.15 views

CVE-2023-51422

Deserialization of Untrusted Data vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings |...

9.9CVSS8.5AI score0.00621EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:59 a.m.14 views

CVE-2023-51423

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instan...

9.8CVSS8.9AI score0.00566EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:30 a.m.12 views

CVE-2023-51424

Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through 3.05.0...

9.8CVSS6.9AI score0.00721EPSS
Exploits0References1
NVD
NVD
added 2024/05/17 9:15 a.m.18 views

CVE-2023-51424

Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through 3.05.0...

9.8CVSS9.6AI score0.00721EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 8:42 a.m.31 views

CVE-2023-51424 WordPress WebinarIgnition plugin <= 3.05.0 - Unauthenticated Privilege Escalation vulnerability

Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through 3.05.0...

9.8CVSS9.6AI score0.00721EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 8:42 a.m.20 views

CVE-2023-51424 WordPress WebinarIgnition plugin <= 3.05.0 - Unauthenticated Privilege Escalation vulnerability

Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through 3.05.0...

9.8CVSS6.9AI score0.00721EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/17 12:0 a.m.13 views

PT-2024-14122 · Unknown · Webinarignition

Name of the Vulnerable Software and Affected Versions: WebinarIgnition versions 3.05.0 and earlier Description: The issue is related to Improper Privilege Management, allowing Privilege Escalation in WebinarIgnition. Recommendations: For versions 3.05.0 and earlier, update to a version later than...

9.8CVSS9.4AI score0.00721EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/05/17 12:0 a.m.6 views

WordPress plugin WebinarIgnition 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

9.8CVSS8.8AI score0.00721EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2024/04/17 12:0 a.m.12 views

WebinarIgnition < 3.06.0 - Cross-Site Request Forgery

Description The WebinarIgnition plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.05.8. This is due to missing or incorrect nonce validation on the delete action. This makes it possible for unauthenticated attackers to delete settings via a forge...

8.8CVSS6.4AI score0.00236EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/04/15 8:15 a.m.15 views

CVE-2024-32445

Cross-Site Request Forgery CSRF vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition.This issue affects WebinarIgnition: from n/a through = 3.05.8...

8.8CVSS5.5AI score0.00236EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/15 7:58 a.m.12 views

CVE-2024-32445 WordPress WebinarIgnition plugin <= 3.05.8 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Saleswonder Team WebinarIgnition.This issue affects WebinarIgnition: from n/a through 3.05.8...

5.4CVSS7.2AI score0.00236EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 7:58 a.m.65 views

CVE-2024-32445

CVE-2024-32445 is a CSRF vulnerability in Saleswonder’s WebinarIgnition plugin for WordPress, affecting WebinarIgnition up to version 3.05.8. The sources describe a CSRF flaw but do not provide exploitation details, confirmed patches, or exact affected configurations beyond that.

8.8CVSS5.9AI score0.00236EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.7 views

PT-2024-24575 · Unknown · Webinarignition

Name of the Vulnerable Software and Affected Versions: WebinarIgnition versions prior to 3.05.8 Description: A Cross-Site Request Forgery CSRF issue affects the software, allowing unauthorized actions to be performed on behalf of a user without their knowledge. Recommendations: For versions prior...

8.8CVSS7AI score0.00236EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/04/12 4:5 p.m.5 views

WordPress WebinarIgnition plugin <= 3.05.8 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin WebinarIgnition versions = 3.05.8...

8.8CVSS7AI score0.00236EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/12 12:0 a.m.13 views

WordPress WebinarIgnition Plugin <= 3.05.8 is vulnerable to Cross Site Request Forgery (CSRF)

Software WebinarIgnition Type Plugin Vulnerable versions = 3.05.8 Fixed in 3.06.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32445 Patch priority Low CVSS severity Low 5.4 Developer Tobias PSID a3482615028f Credits Dhabaleshwar Das Required...

8.8CVSS6.6AI score0.00236EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/01/05 12:0 a.m.20 views

WebinarIgnition < 3.05.1 - Authenticated (Subscriber+) PHP Object Injection

Description The Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.05.0 via deserialization of untrusted input. This makes it possible for...

9.9CVSS8.8AI score0.00621EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2024/01/05 12:0 a.m.18 views

WebinarIgnition < 3.05.1 - Missing Authorization to Unauthenticated Privilege Escalation

Description The Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 3.05.0. This makes it possible...

9.4AI score0.00721EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/31 6:15 p.m.21 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instan...

7.5CVSS7.9AI score0.00566EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder