EUVD-2023-37386

Malicious code in bioql PyPI...

EUVD-2023-53682

Malicious code in bioql PyPI...

CVE-2023-33216

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in gVectors Team WooDiscuz – WooCommerce Comments woodiscuz-woocommerce-comments allows Stored XSS.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.2.9...

CVE-2023-49759

Cross-Site Request Forgery CSRF vulnerability in gVectors Team WooDiscuz – WooCommerce Comments.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.3.0...

CVE-2023-49759

Cross-Site Request Forgery CSRF vulnerability in gVectors Team WooDiscuz – WooCommerce Comments.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.3.0...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in gVectors Team WooDiscuz – WooCommerce Comments.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.3.0...

CVE-2023-49759

CVE-2023-49759 : CSRF vulnerability in gVectors Team WooDiscuz – WooCommerce Comments (WordPress plugin) affecting versions

WooDiscuz – WooCommerce Comments <= 2.3.0 - Cross-Site Request Forgery

Description The WooDiscuz – WooCommerce Comments plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.0. This is due to missing or incorrect nonce validation on an unknown function. This makes it possible for unauthenticated attackers to perform a...

WordPress WooDiscuz – WooCommerce Comments Plugin <= 2.3.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software WooDiscuz – WooCommerce Comments Type Plugin Vulnerable versions = 2.3.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-49759 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID f67f1f9aa58c Credits...

CVE-2023-33216

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in gVectors Team WooDiscuz – WooCommerce Comments woodiscuz-woocommerce-comments allows Stored XSS.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.2.9...

CVE-2023-33216

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in gVectors Team WooDiscuz – WooCommerce Comments woodiscuz-woocommerce-comments allows Stored XSS.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.2.9...

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in gVectors Team WooDiscuz – WooCommerce Comments woodiscuz-woocommerce-comments allows Stored XSS.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.2.9...

CVE-2023-33216

CVE-2023-33216 affects WordPress plugin Woodiscuz – WooCommerce Comments (WooDiscuz – WooCommerce Comments). Vulnerable versions are = 2.3.0 and monitor for any related advisories. CVE-2023-33216.

CVE-2023-33216 WordPress WooDiscuz – WooCommerce Comments Plugin <= 2.2.9 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in gVectors Team WooDiscuz – WooCommerce Comments woodiscuz-woocommerce-comments allows Stored XSS.This issue affects WooDiscuz – WooCommerce Comments: from n/a through 2.2.9...

PT-2023-24226 · WordPress · Woodiscuz – Woocommerce Comments

Name of the Vulnerable Software and Affected Versions: WooDiscuz – WooCommerce Comments versions through 2.2.9 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability allows Stored XSS and affects the WooDiscuz – WooCommerce Comments plugin. It...