4.3

CVSS3.1

CVE-2023-25030 - WordPress Buy Me a Coffee plugin <= 3.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Buy Me a Coffee.This issue affects Buy Me a Coffee: from n/a through 3.7.

πŸ“… Published: June 12, 2024, 9:39 a.m. πŸ”„ Last Modified: April 28, 2026, 4:08 p.m.

5.4

CVSS3.1

CVE-2023-38395 - WordPress WP Clone Menu plugin <= 1.0.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Afzal Multani WP Clone Menu.This issue affects WP Clone Menu: from n/a through 1.0.1.

πŸ“… Published: June 12, 2024, 9:38 a.m. πŸ”„ Last Modified: Nov. 21, 2024, 8:13 a.m.

5.4

CVSS3.1

CVE-2023-40672 - WordPress Sticky Social Media Icons plugin <= 2.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Hardik Chavada Sticky Social Media Icons.This issue affects Sticky Social Media Icons: from n/a through 2.1.

πŸ“… Published: June 12, 2024, 9:36 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.4

CVSS3.1

CVE-2024-2092 - Elementor Addon Elements <= 1.13.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via T…

The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Twitter Widget in all versions up to, and including, 1.13.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticate…

πŸ“… Published: June 12, 2024, 9:33 a.m. πŸ”„ Last Modified: April 8, 2026, 6:20 p.m.

8.8

CVSS3.1

CVE-2024-4845 - Icegram Express <= 5.7.22 - Authenticated (Subscriber+) SQL Injection Vulnerability via options[li…

The Icegram Express plugin for WordPress is vulnerable to SQL Injection via the β€˜options[list_id]’ parameter in all versions up to, and including, 5.7.22 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible…

πŸ“… Published: June 12, 2024, 9:33 a.m. πŸ”„ Last Modified: April 8, 2026, 4:41 p.m.

4.3

CVSS3.1

CVE-2023-47845 - WordPress Grab & Save plugin <= 1.0.4 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Lim Kai Yang Grab & Save.This issue affects Grab & Save: from n/a through 1.0.4.

πŸ“… Published: June 12, 2024, 9:25 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2023-48280 - WordPress Consensu.io plugin <= 1.0.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Consensu.IO Consensu.Io.This issue affects Consensu.Io: from n/a through 1.0.1.

πŸ“… Published: June 12, 2024, 9:23 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.3

CVSS3.1

CVE-2023-51413 - WordPress Piotnet Forms plugin <= 1.0.29 - Broken Access Control vulnerability

Missing Authorization vulnerability in Piotnet Forms.This issue affects Piotnet Forms: from n/a through 1.0.29.

πŸ“… Published: June 12, 2024, 9:13 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.3

CVSS3.1

CVE-2023-47828 - WordPress wpMandrill plugin <= 1.33 - Broken Access Control vulnerability

Missing Authorization vulnerability in Mandrill wpMandrill.This issue affects wpMandrill: from n/a through 1.33.

πŸ“… Published: June 12, 2024, 9:11 a.m. πŸ”„ Last Modified: April 28, 2026, 4:08 p.m.

4.3

CVSS3.1

CVE-2023-51524 - WordPress weForms plugin <= 1.6.18 - Broken Access Control vulnerability

Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.18.

πŸ“… Published: June 12, 2024, 9:09 a.m. πŸ”„ Last Modified: Nov. 21, 2024, 8:38 a.m.
Total resulsts: 349182
Page 9486 of 34,919
Β« previous page Β» next page
Filters