Vulners
Lucene search
3 matches found
CVE-2023-40199
Cross-Site Request Forgery CSRF vulnerability in CRUDLab WP Like Button plugin = 1.7.0 versions...
8.8CVSS6.5AI score0.00106EPSS
Exploits0References1
CVE-2023-40199
CVE-2023-40199 describes a Cross-Site Request Forgery (CSRF) vulnerability in the CRUDLab WP Like Button plugin for WordPress, affecting versions
8.8CVSS7.1AI score0.00106EPSS
Exploits0References1Affected Software1
Authentication flaw
An authentication bypass vulnerability in the CRUDLab WP Like Button plugin through 1.6.0 for WordPress allows unauthenticated attackers to change settings. The contains function in wplikebutton.php did not check if the current request is made by an authorized user, thus allowing any...
5CVSS5.5AI score0.57289EPSS
Exploits5References4Affected Software1
20