2 matches found
CVE-2023-45836
CVE-2023-45836 is a Cross-Site Request Forgery (CSRF) vulnerability in the XYDAC Ultimate Taxonomy Manager WordPress plugin, affecting versions <= 2.0. Public sources (NVD, Patchstack, Red Hat) describe an CSRF flaw with a base impact around CVSS v3.1 4.3 (Medium) to 8.8 in other metrics depen...
CVE-2023-45837
CVE-2023-45837 : Unauthenticated reflected XSS in XYDAC Ultimate Taxonomy Manager plugin (versions 2.0 when available, since no fixed version is listed in the provided materials.