3 matches found
CVE-2024-5028
CVE-2024-5028 —The CM WordPress Search And Replace Plugin (pre-1.3.9) lacks CSRF checks in some areas, enabling attackers to induce logged-in users to perform unwanted actions via CSRF. Red Hat and Patchstack entries corroborate the issue and reference the same plugin/version window. Wordfence vu...
CVE-2023-31228
CVE-2023-31228 affects the CreativeMindsSolutions CM On Demand Search And Replace plugin for WordPress, specifically versions
CVE-2023-28749
CVE-2023-28749 : CSRF vulnerability in CM On Demand Search And Replace (WordPress plugin)