ReportizFlow
Filtered by vendor
Subscriptions
Total
8353 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-36891 | 1 Supsystic | 1 Photo Gallery | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Photo Gallery by Supsystic plugin <= 1.15.5 at WordPress allows changing the plugin settings. | ||||
| CVE-2022-29454 | 1 Wordplus | 1 Better Messages | 2025-02-20 | 3.1 Low |
| Cross-Site Request Forgery (CSRF) vulnerability in WordPlus Better Messages plugin <= 1.9.9.148 at WordPress allows attackers to upload files. File attachment to messages must be activated. | ||||
| CVE-2022-32289 | 1 Sygnoos | 1 Popup Builder | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Sygnoos Popup Builder plugin <= 4.1.0 at WordPress leading to popup status change. | ||||
| CVE-2022-30337 | 1 Joomunited | 1 Wp Meta Seo | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in JoomUnited WP Meta SEO plugin <= 4.4.8 at WordPress allows an attacker to update the social settings. | ||||
| CVE-2022-29495 | 1 Sygnoos | 1 Popup Builder | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Sygnoos Popup Builder plugin <= 4.1.11 at WordPress allows an attacker to update plugin settings. | ||||
| CVE-2022-33201 | 1 Mailerlite | 1 Mailerlite Signup Forms | 2025-02-20 | 6.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in MailerLite – Signup forms (official) plugin <= 1.5.7 at WordPress allows an attacker to change the API key. | ||||
| CVE-2021-36861 | 1 Starfish | 1 Rich Review | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Rich Reviews by Starfish plugin <= 1.9.14 at WordPress allows an attacker to delete reviews. | ||||
| CVE-2021-36852 | 1 Thimpress | 1 Wp Hotel Booking | 2025-02-20 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Hotel Booking plugin <= 1.10.5 at WordPress. | ||||
| CVE-2022-36346 | 1 Maxfoundry | 1 Maxbuttons | 2025-02-20 | 4.3 Medium |
| Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Max Foundry MaxButtons plugin <= 9.2 at WordPress. | ||||
| CVE-2022-36379 | 1 Yookassa | 1 Yukassa For Woocommerce | 2025-02-20 | 8.8 High |
| Cross-Site Request Forgery (CSRF) leading to plugin settings update in YooMoney ЮKassa для WooCommerce plugin <= 2.3.0 at WordPress. | ||||
| CVE-2022-36292 | 1 Wpchill | 1 Gallery Photoblocks | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerabilities in WPChill Gallery PhotoBlocks plugin <= 1.2.6 at WordPress. | ||||
| CVE-2022-36389 | 1 Wordplus | 1 Better Messages | 2025-02-20 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in WordPlus Better Messages plugin <= 1.9.9.148 at WordPress. | ||||
| CVE-2022-36358 | 1 Seoscout | 1 Seo Scout | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in SEO Scout plugin <= 0.9.83 at WordPress allows attackers to trick users with administrative rights to unintentionally change the plugin settings. | ||||
| CVE-2022-36373 | 1 Mp3-jplayer Project | 1 Mp3-jplayer | 2025-02-20 | 5.4 Medium |
| Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Simon Ward MP3 jPlayer plugin <= 2.7.3 at WordPress. | ||||
| CVE-2022-36796 | 1 Callrail | 1 Callrail Phone Call Tracking | 2025-02-20 | 6.1 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) in CallRail, Inc. CallRail Phone Call Tracking plugin <= 0.4.9 at WordPress. | ||||
| CVE-2022-33177 | 1 Wpbookingcalendar | 1 Booking Calendar | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in WPdevelop/Oplugins Booking Calendar plugin <= 9.2.1 at WordPress leading to Translations Update. | ||||
| CVE-2022-38059 | 1 Access Code Feeder Project | 1 Access Code Feeder | 2025-02-20 | 5.5 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Alexey Trofimov's Access Code Feeder plugin <= 1.0.3 at WordPress. | ||||
| CVE-2022-38093 | 1 Aioseo | 1 All In One Seo | 2025-02-20 | 5.4 Medium |
| Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in All in One SEO plugin <= 4.2.3.1 at WordPress. | ||||
| CVE-2022-37405 | 1 Better Font Awesome Project | 1 Better Font Awesome | 2025-02-20 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Mickey Kay's Better Font Awesome plugin <= 2.0.1 at WordPress. | ||||
| CVE-2022-35277 | 1 Getresponse | 1 Getresponse | 2025-02-20 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in GetResponse plugin <= 5.5.20 at WordPress. | ||||