4 matches found
CVE-2014-10376
CVE-2014-10376 affects the WordPress plugin i-recommend-this (before version 3.7.3). The vulnerability is a SQL injection in the plugin, allowing potential arbitrary SQL execution with network access and no authentication. CVSS: 3.0 base score 9.8 (CRITICAL) across confidentiality, integrity, and...
CVE-2023-28696
CVE-2023-28696 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin I Recommend This (also listed as Themeist I Recommend This) affecting versions up to 3.9.0. The issue arises from CSRF protection weaknesses in the plugin, enabling unauthorized actions on a user’s account...
CVE-2023-23673
The CVE refers to a Stored XSS in the WordPress plugin “I Recommend This” (Themeist) versions
CVE-2014-125099
Affected software: WordPress plugin “I Recommend This Plugin” (up to 3.7.2). Vulnerability: SQL injection due to an unknown function in dot-irecommendthis.php; attack can be launched remotely. Impact: data disclosure/modification possible; severity per sources is MEDIUM to CRITICAL depending on v...