CVE-2023-52119 WordPress Icegram Plugin <= 3.1.18 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building: from n/a through 3.1.18...

WordPress Icegram Plugin <= 3.1.21 is vulnerable to Broken Access Control

Software Icegram Type Plugin Vulnerable versions = 3.1.21 Fixed in 3.1.22 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-21748 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 81671ed8c65a Credits Huynh Tien Si Required privilege...

WordPress Icegram Plugin <= 3.1.18 is vulnerable to Cross Site Request Forgery (CSRF)

Software Icegram Type Plugin Vulnerable versions = 3.1.18 Fixed in 3.1.19 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-52119 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 10fea57749dc Credits Brandon Roldan Required...

WordPress Icegram Plugin <= 3.1.19 is vulnerable to Cross Site Scripting (XSS)

Software Icegram Type Plugin Vulnerable versions = 3.1.19 Fixed in 3.1.20 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-51532 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID eac57c24cf8c Credits Huynh Tien Si Required privilege Contributor...