ReportizFlow
Filtered by vendor
Subscriptions
Total
8343 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-48278 | 1 Nitinrathod | 1 Wp Forms Puzzle Captcha | 2024-11-21 | 7.1 High |
| Cross-Site Request Forgery (CSRF) vulnerability in Nitin Rathod WP Forms Puzzle Captcha allows Stored XSS.This issue affects WP Forms Puzzle Captcha: from n/a through 4.1. | ||||
| CVE-2023-48021 | 1 Iteachyou | 1 Dreamer Cms | 2024-11-21 | 8.8 High |
| Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/task/update. | ||||
| CVE-2023-48020 | 1 Iteachyou | 1 Dreamer Cms | 2024-11-21 | 8.8 High |
| Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/task/changeStatus. | ||||
| CVE-2023-47875 | 1 Perfmatters | 1 Perfmatters | 2024-11-21 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Perfmatters allows Cross Site Request Forgery.This issue affects Perfmatters: from n/a through 2.1.6. | ||||
| CVE-2023-47870 | 1 Gvectors | 1 Wpforo Forum | 2024-11-21 | 7.1 High |
| Cross-Site Request Forgery (CSRF), Missing Authorization vulnerability in gVectors Team wpForo Forum wpforo allows Cross Site Request Forgery, Accessing Functionality Not Properly Constrained by ACLs leading to forced all users log out.This issue affects wpForo Forum: from n/a through 2.2.6. | ||||
| CVE-2023-47825 | 1 Wpvnteam | 1 Wp Extra | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in TienCOP WP EXtra plugin <= 6.4 versions. | ||||
| CVE-2023-47824 | 1 Wpwax | 1 Legal Pages | 2024-11-21 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in wpWax Legal Pages – Privacy Policy, Terms & Conditions, GDPR, CCPA, and Cookie Notice Generator plugin <= 1.3.8 versions. | ||||
| CVE-2023-47806 | 1 Saintsystems | 1 Disable User Login | 2024-11-21 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Saint Systems Disable User Login.This issue affects Disable User Login: from n/a through 1.3.7. | ||||
| CVE-2023-47792 | 1 Infiniteuploads | 1 Big File Uploads | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Infinite Uploads Big File Uploads – Increase Maximum File Upload Size plugin <= 2.1.1 versions. | ||||
| CVE-2023-47791 | 1 Leadster | 1 Leadster | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Leadster plugin <= 1.1.2 versions. | ||||
| CVE-2023-47790 | 1 Popozure | 1 Pz-linkcard | 2024-11-21 | 7.1 High |
| Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) vulnerability in Poporon Pz-LinkCard plugin <= 2.4.8 versions. | ||||
| CVE-2023-47789 | 1 Automattic | 1 Canada Post Shipping Method | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce Canada Post Shipping Method.This issue affects Canada Post Shipping Method: from n/a through 2.8.3. | ||||
| CVE-2023-47787 | 1 Automattic | 1 Woocommerce Bookings | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce WooCommerce Bookings.This issue affects WooCommerce Bookings: from n/a through 2.0.3. | ||||
| CVE-2023-47781 | 1 Thrivethemes | 1 Thrive Themes Builder | 2024-11-21 | 8.8 High |
| Cross-Site Request Forgery (CSRF) vulnerability in Thrive Themes Thrive Theme Builder < 3.24.2 versions. | ||||
| CVE-2023-47775 | 1 Gvectors | 1 Wpdiscuz | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in gVectors Team Comments — wpDiscuz plugin <= 7.6.11 versions. | ||||
| CVE-2023-47765 | 1 Codebard | 1 Codebard\'s Patron Button And Widgets For Patreon | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in CodeBard CodeBard's Patron Button and Widgets for Patreon plugin <= 2.1.9 versions. | ||||
| CVE-2023-47758 | 1 Mondula | 1 Multi Step Form | 2024-11-21 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Mondula GmbH Multi Step Form plugin <= 1.7.11 versions. | ||||
| CVE-2023-47757 | 1 Aweber | 1 Aweber | 2024-11-21 | 4.3 Medium |
| Missing Authorization, Cross-Site Request Forgery (CSRF) vulnerability in AWeber AWeber – Free Sign Up Form and Landing Page Builder Plugin for Lead Generation and Email Newsletter Growth allows Accessing Functionality Not Properly Constrained by ACLs, Cross-Site Request Forgery.This issue affects AWeber – Free Sign Up Form and Landing Page Builder Plugin for Lead Generation and Email Newsletter Growth: from n/a through 7.3.9. | ||||
| CVE-2023-47688 | 1 Alexufo | 1 Youtube Speedload | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Alexufo Youtube SpeedLoad plugin <= 0.6.3 versions. | ||||
| CVE-2023-47687 | 1 Vjinfotech | 1 Woo Custom And Sequential Order Number | 2024-11-21 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in VJInfotech Woo Custom and Sequential Order Number plugin <= 2.6.0 versions. | ||||