CVE-2023-47759 - Exploiting an XSS Vulnerability in the Premio Chaty Plugin for WordPress (<= 3.1.2)
WordPress is a widely used content management system (CMS), making its plugins a prime target for attackers. Recently, CVE-2023-47759 revealed a Cross-site Scripting (XSS) flaw
CVE-2023-39925 - Unpacking a CSRF Vulnerability in PeepSo Download Community (<= 6.1.6.) — What You Need To Know
*PeepSo Download Community* by PeepSo is a popular WordPress plugin that adds social networking features to websites. However, security researchers recently discovered a Cross-Site Request
CVE-2023-47792 - How a CSRF Flaw in Big File Uploads Plugin Could Let Attackers Change Your WordPress Settings
If you use WordPress to run your website, you probably know how hard it can be to upload large files. That’s where plugins like
CVE-2023-5382 - How a Simple CSRF Bug Could Let Attackers Delete Your WordPress Posts via Funnelforms Free
---
Summary:
A Cross-Site Request Forgery (CSRF) vulnerability has been discovered in the popular Funnelforms Free WordPress plugin, affecting versions up to and including 3.
CVE-2023-5383 - Exploiting WordPress Funnelforms Free Plugin CSRF Vulnerability (Versions ≤ 3.4)
---
Published: June 2024
Affected Plugin: Funnelforms Free (≤ 3.4)
Vulnerability: Cross-Site Request Forgery (CSRF)
CVE: CVE-2023-5383
Severity: Medium
Impact: Unauthorized copying of arbitrary posts
Episode
00:00:00
00:00:00