CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

8.8CVSS6.4AI score0.0007EPSS

Exploits0

NVD•added 2023/10/09 6:15 p.m.•20 views

CVE-2023-41667

Cross-Site Request Forgery CSRF vulnerability in Ulf Benjaminsson WP-dTree plugin = 4.4.5 versions...

8.8CVSS5.8AI score0.0007EPSS

Exploits0References1

Prion•added 2023/10/09 6:15 p.m.•19 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Ulf Benjaminsson WP-dTree plugin = 4.4.5 versions...

6.8CVSS8.8AI score0.0007EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/10/09 5:38 p.m.•11 views

CVE-2023-41667 WordPress WP-dTree Plugin <= 4.4.5 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Ulf Benjaminsson WP-dTree plugin = 4.4.5 versions...

4.3CVSS7.1AI score0.0007EPSS

Exploits0References1

CVE•added 2023/10/09 5:38 p.m.•72 views

CVE-2023-41667

CVE-2023-41667: Cross-Site Request Forgery in WP-dTree plugin (WordPress) versions

8.8CVSS6.4AI score0.0007EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/10/09 12:0 a.m.•2 views

WordPress Plugin wp-dtree-30 Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin wp-dtree-3...

8.8CVSS6.6AI score0.0007EPSS

Exploits0References2

OSV•added 2023/09/29 2:15 p.m.•1 views

CVE-2023-41662

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ulf Benjaminsson WP-dTree plugin = 4.4.5 versions...

6.1CVSS7.3AI score0.00083EPSS

Exploits0References1

NVD•added 2023/09/29 2:15 p.m.•14 views

CVE-2023-41662

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ulf Benjaminsson WP-dTree plugin = 4.4.5 versions...

7.1CVSS6.2AI score0.00083EPSS

Exploits0References1

Prion•added 2023/09/29 2:15 p.m.•12 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ulf Benjaminsson WP-dTree plugin = 4.4.5 versions...

5.8CVSS6AI score0.00083EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/09/29 1:39 p.m.•8 views

CVE-2023-41662 WordPress WP-dTree Plugin <= 4.4.5 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ulf Benjaminsson WP-dTree plugin = 4.4.5 versions...

7.1CVSS6.2AI score0.00083EPSS

Exploits0References1

CVE•added 2023/09/29 1:39 p.m.•54 views

CVE-2023-41662

CVE-2023-41662: WP-dTree WordPress Plugin — Unauthenticated reflected XSS in WP-dTree

7.1CVSS6.1AI score0.00083EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/09/29 12:0 a.m.•2 views

WordPress Plugin wp-dtree-30 Cross-Site Scripting Vulnerability

7.1CVSS6AI score0.00083EPSS

Exploits0References3

Patchstack•added 2023/09/04 12:0 a.m.•7 views

WordPress WP-dTree Plugin <= 4.4.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP-dTree Type Plugin Vulnerable versions = 4.4.5 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-41667 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID df2c2472ecf8 Credits LEE SE HYOUNG hackintoanetwo...

8.8CVSS6.5AI score0.0007EPSS

Exploits0References1Affected Software1

Patchstack•added 2023/09/01 12:0 a.m.•8 views

WordPress WP-dTree Plugin <= 4.4.5 is vulnerable to Cross Site Scripting (XSS)

Software WP-dTree Type Plugin Vulnerable versions = 4.4.5 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-41662 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 03289833774b Credits Le Ngoc Anh Required...

7.1CVSS5.6AI score0.00083EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by