3 matches found
WordPress Yuki Theme <= 1.3.13 is vulnerable to Broken Access Control
Software Yuki Type Theme Vulnerable versions = 1.3.13 Fixed in 1.3.14 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1388 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID bc04919f893e Credits Lucio Sá Required privilege Subscriber...
WordPress Yuki Theme <= 1.3.14 is vulnerable to Cross Site Request Forgery (CSRF)
Software Yuki Type Theme Vulnerable versions = 1.3.14 Fixed in 1.3.15 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-1943 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d0c2045710bf Credits Lucio Sá Required privilege...
WordPress Yuki Theme <= 1.3.7 is vulnerable to Cross Site Scripting (XSS)
Software Yuki Type Theme Vulnerable versions = 1.3.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 376cd5b10558 Credits Rafie Muhammad Patchstack Required privilege...