Lucene search

CRUDLab Security Vulnerabilities

cve

CVE-2023-32966

Cross-Site Request Forgery (CSRF) vulnerability in CRUDLab Jazz Popups leads to Stored XSS.This issue affects Jazz Popups: from n/a through...

6.1CVSS

7.3AI Score

0.0005EPSS

2023-11-07 06:15 PM

cve

CVE-2023-40199

Cross-Site Request Forgery (CSRF) vulnerability in CRUDLab WP Like Button plugin <= 1.7.0...

8.8CVSS

8.8AI Score

0.001EPSS

2023-10-03 01:15 PM

cve

CVE-2023-32965

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in CRUDLab Jazz Popups plugin <= 1.8.7...

6.1CVSS

5.9AI Score

0.0005EPSS

2023-07-18 02:15 PM

cve

CVE-2019-13344

An authentication bypass vulnerability in the CRUDLab WP Like Button plugin through 1.6.0 for WordPress allows unauthenticated attackers to change settings. The contains() function in wp_like_button.php did not check if the current request is made by an authorized user, thus allowing any...

5.3CVSS

5.5AI Score

0.95EPSS

2019-07-05 04:15 PM

304