8 matches found
EUVD-2023-41801
Malicious code in bioql PyPI...
CVE-2024-12279
The WP Social AutoConnect plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.6.2. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to inject malicious web scripts via a...
CVE-2024-12279 WP Social AutoConnect <= 4.6.2 - Cross-Site Request Forgery to Reflected Cross-Site Scripting
The WP Social AutoConnect plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.6.2. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to inject malicious web scripts via a...
CVE-2024-12279 WP Social AutoConnect <= 4.6.2 - Cross-Site Request Forgery to Reflected Cross-Site Scripting
The WP Social AutoConnect plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.6.2. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to inject malicious web scripts via a...
CVE-2024-12279
CVE-2024-12279 refers to the WP Social AutoConnect WordPress plugin (affected versions up to 4.6.2) and is due to missing or incorrect nonce validation, enabling an unauthenticated attacker to trigger a CSRF that can lead to a reflected XSS when an admin is tricked into performing an action. Word...
CVE-2023-37974
Cross-Site Request Forgery CSRF vulnerability in Justin Klein WP Social AutoConnect plugin = 4.6.1 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Justin Klein WP Social AutoConnect plugin = 4.6.1 versions...
CVE-2023-37974
CVE-2023-37974 relates to the WordPress plugin WP Social AutoConnect (Justin Klein) version