WordPress Xhanch - My Advanced Settings plugin <= 1.1.2 - Cross-Site Request Forgery to Settings Update vulnerability

WordPress Xhanch - My Advanced Settings plugin = 1.1.2 - Cross-Site Request Forgery to Settings Update vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Xhanch – My Advanced Settings versions = 1.1.2...

CVE-2026-3332

The Xhanch - My Advanced Settings plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.2. This is due to missing nonce validation in the xmssetting function on the settings update handler. This makes it possible for unauthenticated attackers t...

CVE-2026-3332 Xhanch - My Advanced Settings <= 1.1.2 - Cross-Site Request Forgery to Settings Update

The Xhanch - My Advanced Settings plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.2. This is due to missing nonce validation in the xmssetting function on the settings update handler. This makes it possible for unauthenticated attackers t...

CVE-2026-3332

The Xhanch - My Advanced Settings plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.2. This is due to missing nonce validation in the xmssetting function on the settings update handler. This makes it possible for unauthenticated attackers t...

CVE-2026-3332 Xhanch - My Advanced Settings <= 1.1.2 - Cross-Site Request Forgery to Settings Update

The Xhanch - My Advanced Settings plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.2. This is due to missing nonce validation in the xmssetting function on the settings update handler. This makes it possible for unauthenticated attackers t...

WordPress plugin Xhanch - My Advanced Settings 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

EUVD-2013-3190

Malware in sbrugna...

CVE-2013-3253

Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...

WordPress Xhanch My Twitter Plugin - CSRF

Xhanch My Twitter plugin is prone to a cross-site request forgery vulnerability. It allows an attacker to gain unauthorized access to the affected application by performing certain actions in the context of an authorized user's session. Solution Upgrade the plugin...

WordPress Plugin Xhanch My Twitter - Cross-Site Request Forgery

source: https://www.securityfocus.com/bid/69744/info Xhanch My Twitter plugin for WordPress is prone to a cross-site request-forgery vulnerability. An attacker can exploit the cross-site request forgery issue to perform unauthorized actions in the context of a logged-in user of the affected...

WordPress Plugin Xhanch My Twitter - Cross-Site Request Forgery

WordPress Plugin Xhanch My Twitter - Cross-Site Request Forgery source: https://www.securityfocus.com/bid/69744/info Xhanch My Twitter plugin for WordPress is prone to a cross-site request-forgery vulnerability. An attacker can exploit the cross-site request forgery issue to perform unauthorized...

Xhanch my Twitter - CSRF in admin/setting.php

The Xhanch – My Twitter WordPress plugin was affected by a CSRF in admin/setting.php security vulnerability...

WordPress Xhanch - My Twitter插件跨站请求伪造漏洞(CVE-2013-3253)

Bugtraq ID:61629 CVE ID:CVE-2013-3253 WordPress是一种使用PHP语言开发的博客平台，用户可以在支持PHP和MySQL数据库的服务器上架设自己的网志 WordPress Xhanch - My Twitter插件存在一个跨站请求伪造漏洞，允许远程攻击者构建恶意URI，诱使用户解析，可以目标用户上下文执行恶意操作 0 WordPress Xhanch - My Twitter Plugin 2.7.5 厂商解决方案 WordPress Xhanch - My Twitter Plugin 2.7.7已经修复此漏洞，建议用户下载更新：...

CVE-2013-3253

Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...

CVE-2013-3253

Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...

CVE-2013-3253

CVE-2013-3253 documents a Cross-Site Request Forgery (CSRF) in the WordPress plugin Xhanch – My Twitter, specifically in admin/setting.php. Affected plugin versions are prior to 2.7.7, enabling remote attackers to hijack the administrator’s authentication to perform actions that change unspecifie...

WordPress Xhanch My Twitter Plugin <= 2.7.6 - CSRF

Because of this vulnerability in admin/setting.php, the attackers can hijack the authentication of administrators for requests that change unspecified settings. Solution Update the plugin...