3 matches found
CVE-2025-22729 WordPress VOD Infomaniak plugin <= 1.5.9 - Broken Access Control vulnerability
Missing Authorization vulnerability in Infomaniak Staff VOD Infomaniak allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VOD Infomaniak: from n/a through 1.5.9...
WordPress VOD Infomaniak Plugin <= 1.5.7 is vulnerable to Cross Site Request Forgery (CSRF)
Software VOD Infomaniak Type Plugin Vulnerable versions = 1.5.7 Fixed in 1.5.8 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-49274 Patch priority Low CVSS severity Low 5.4 Developer Infomaniak Network PSID 41fb3fda8035 Credits Joshua Chan...
WordPress VOD Infomaniak Plugin <= 1.5.6 is vulnerable to Cross Site Scripting (XSS)
Software VOD Infomaniak Type Plugin Vulnerable versions = 1.5.6 Fixed in 1.5.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-33571 Patch priority Medium CVSS severity Medium 7.1 Developer Infomaniak Network PSID 28a7c79f4be8 Credits Rafie Muhammad Patchstack...