8 matches found
EUVD-2013-3412
Malware in sbrugna...
CVE-2024-9626 Editorial Assistant by Sovrn <= 1.3.3 - Missing Authorization to Authenticated (Subscriber+) Attachment Upload and Set Post Featured Image
The Editorial Assistant by Sovrn plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajaxzemantasetfeaturedimage' function in versions up to, and including, 1.3.3. This makes it possible for authenticated attackers, with subscriber-lev...
CVE-2024-9626 Editorial Assistant by Sovrn <= 1.3.3 - Missing Authorization to Authenticated (Subscriber+) Attachment Upload and Set Post Featured Image
The Editorial Assistant by Sovrn plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajaxzemantasetfeaturedimage' function in versions up to, and including, 1.3.3. This makes it possible for authenticated attackers, with subscriber-lev...
Related Posts by Zemanta 1.3.1 - Cross-Site Request Forgery
The related-posts-by-zemanta WordPress plugin was affected by a Cross-Site Request Forgery security vulnerability...
CVE-2013-3477
Cross-site request forgery CSRF vulnerability in the Related Posts by Zemanta plugin before 1.3.2 for WordPress allows remote attackers to hijack the authentication of unspecified users for requests that change settings via unknown vectors...
CVE-2013-3477
The CVE-2013-3477 vulnerability is a CSRF flaw in the WordPress plugin Related Posts by Zemanta up to version 1.3.1/1.3.1 (and before 1.3.2), allowing remote attackers to hijack user authentication and change settings via unknown vectors. Affected component: Related Posts by Zemanta plugin; impac...
CVE-2013-3477
Cross-site request forgery CSRF vulnerability in the Related Posts by Zemanta plugin before 1.3.2 for WordPress allows remote attackers to hijack the authentication of unspecified users for requests that change settings via unknown vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the Related Posts by Zemanta plugin before 1.3.2 for WordPress allows remote attackers to hijack the authentication of unspecified users for requests that change settings via unknown vectors...