Aggregator

CVE-2023-6627 | WP Go Maps Plugin up to 9.0.27 on WordPress REST API cross site scripting (EUVD-2023-58850)

5 months 4 weeks ago

A vulnerability, which was classified as problematic, has been found in WP Go Maps Plugin up to 9.0.27 on WordPress. This issue affects some unknown processing of the component REST API. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2023-6627. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2023-6532 | WP Blogs Planetarium Plugin up to 1.0 on WordPress Setting cross-site request forgery (EUVD-2023-58763)

Vuldb Updates

5 months 4 weeks ago

A vulnerability has been found in WP Blogs Planetarium Plugin up to 1.0 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Setting Handler. The manipulation leads to cross-site request forgery. This vulnerability is known as CVE-2023-6532. The attack can be launched remotely. There is no exploit available.

vuldb.com

CVE-2023-6505 | Migrate WordPress Website & Backups Plugin up to 1.9.2 on WordPress file information disclosure

Vuldb Updates

5 months 4 weeks ago

A vulnerability was found in Migrate WordPress Website & Backups Plugin up to 1.9.2 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to file and directory information exposure. This vulnerability is handled as CVE-2023-6505. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2023-6555 | Email Subscription Popup Plugin up to 1.2.19 on WordPress cross site scripting (EUVD-2023-58784)

Vuldb Updates

5 months 4 weeks ago

A vulnerability was found in Email Subscription Popup Plugin up to 1.2.19 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2023-6555. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2023-49961 | WALLIX Bastion/Access Manager access control

Vuldb Updates

5 months 4 weeks ago

A vulnerability has been found in WALLIX Bastion and Access Manager and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper access controls. This vulnerability is known as CVE-2023-49961. The attack needs to be approached within the local network. There is no exploit available.

vuldb.com