CVE-2023-47757 - How a CSRF and Missing Authorization Bug in the AWeber WordPress Plugin Lets Attackers Exploit Your Site
*Published: June 2024 — By: WordSecWrite*
WordPress plugins are great for extending your website’s features, but they can open big security holes if not carefully
CVE-2023-47688 - How a CSRF Bug in Youtube SpeedLoad Plugin <= .6.3 Could Have Let Someone Hijack Your WordPress
---
A major issue was uncovered in an old—but still widely used—WordPress plugin called “Youtube SpeedLoad”, developed by Alexufo. If you have version
CVE-2023-47230 - Exploiting CSRF in Cimatti Consulting WordPress Contact Forms Plugin (<= v1.6.)
On November 20, 2023, a serious vulnerability was disclosed for the "Contact Forms by Cimatti" WordPress plugin (by Cimatti Consulting). Tagged as CVE-2023-47230,
CVE-2023-46636 - CSRF Vulnerability in Custom Header Images WordPress Plugin (<= 1.2.1) Explained
> Cross-Site Request Forgery (CSRF) issues may seem like a thing of the past, but new vulnerabilities pop up all the time. One such vulnerability
CVE-2023-46638 - Breaking Down the CSRF Vulnerability in Webcodin WCP OpenWeather Plugin (Versions ≤ 2.5.)
If you run a WordPress site, you probably use plugins to add cool features. But sometimes, these plugins open up your site to cyberattacks. One
Episode
00:00:00
00:00:00