CVE-2023-47685 - Cross-Site Request Forgery (CSRF) in Lukman Nakib Preloader Matrix (All Versions up to 2..1)
If you work with the Preloader Matrix plugin by Lukman Nakib, you should be aware of CVE-2023-47685, a Cross-Site Request Forgery (CSRF)
CVE-2023-47757 - How a CSRF and Missing Authorization Bug in the AWeber WordPress Plugin Lets Attackers Exploit Your Site
*Published: June 2024 — By: WordSecWrite*
WordPress plugins are great for extending your website’s features, but they can open big security holes if not carefully
CVE-2023-47688 - How a CSRF Bug in Youtube SpeedLoad Plugin <= .6.3 Could Have Let Someone Hijack Your WordPress
---
A major issue was uncovered in an old—but still widely used—WordPress plugin called “Youtube SpeedLoad”, developed by Alexufo. If you have version .6.
CVE-2023-47230 - Exploiting CSRF in Cimatti Consulting WordPress Contact Forms Plugin (<= v1.6.)
On November 20, 2023, a serious vulnerability was disclosed for the "Contact Forms by Cimatti" WordPress plugin (by Cimatti Consulting). Tagged as CVE-
CVE-2023-46636 - CSRF Vulnerability in Custom Header Images WordPress Plugin (<= 1.2.1) Explained
> Cross-Site Request Forgery (CSRF) issues may seem like a thing of the past, but new vulnerabilities pop up all the time. One such
Episode
00:00:00
00:00:00