Security
Headlines
HeadlinesLatestCVEs

Tag

#csrf

CVE-2023-37974: WordPress WP Social AutoConnect plugin <= 4.6.1 - Cross Site Request Forgery (CSRF) vulnerability - Patchstack

Cross-Site Request Forgery (CSRF) vulnerability in Justin Klein WP Social AutoConnect plugin <= 4.6.1 versions.

CVE
Open in Source
#csrf#vulnerability#wordpress#auth
CVE-2023-36511: WordPress WooCommerce Order Barcodes plugin <= 1.6.4 - Cross Site Request Forgery (CSRF) vulnerability - Patchstack

Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce WooCommerce Order Barcodes plugin <= 1.6.4 versions.

CVE-2023-34005: WordPress Front End Users plugin <= 3.2.24 - Cross Site Request Forgery (CSRF) vulnerability - Patchstack

Cross-Site Request Forgery (CSRF) vulnerability in Etoile Web Design Front End Users plugin <= 3.2.24 versions.

CVE-2023-36513: WordPress AutomateWoo plugin <= 5.7.5 - Cross Site Request Forgery (CSRF) vulnerability - Patchstack

Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce AutomateWoo plugin <= 5.7.5 versions.

CVE-2023-37968: WordPress Falang multilanguage plugin <= 1.3.39 - Cross Site Request Forgery (CSRF) vulnerability - Patchstack

Cross-Site Request Forgery (CSRF) vulnerability in Faboba Falang multilanguage for WordPress plugin <= 1.3.39 versions.

ProjeQtOr Project Management System 10.4.1 Cross Site Scripting

ProjeQtOr Project Management System version 10.4.1 suffers from multiple cross site scripting vulnerabilities.

WinterCMS 1.2.2 Cross Site Scripting

WinterCMS versions prior to 1.2.3 suffer from a persistent cross site scripting vulnerability.