Exploit - CVE CyberSecurity Database News (Page 257)

Jan 2, 2025 WordPress Exploit PHP

CVE-2023-46188 - How a Missing Authorization Bug in Freesoul Deactivate Plugins Exposes Your WordPress Site

WordPress plugins make life easier, but sometimes, they open serious security holes. The vulnerability tracked as CVE-2023-46188 is a perfect example. If you use the

CVE-2023-46195 - How a Missing Authorization in CoSchedule Headline Analyzer Lets Attackers Slip Right In

Jan 2, 2025 WordPress Exploit

CVE-2023-46195 - How a Missing Authorization in CoSchedule Headline Analyzer Lets Attackers Slip Right In

Quick Overview: A new vulnerability tagged CVE-2023-46195 has been found in the CoSchedule Headline Analyzer WordPress plugin (versions up to and including 1.3.1)

Jan 2, 2025 WordPress API Exploit

CVE-2023-46206 - Missing Authorization Lets Attackers Exploit Access Control in MW WP Form (Up to 4.4.5)

A recent security advisory brought attention to a critical vulnerability — CVE-2023-46206 — found in the popular WordPress plugin MW WP Form, versions up to 4.4.

Jan 2, 2025 CSRF WordPress API Exploit PHP

CVE-2023-46605 - Exploiting Missing Authorization in Convertful – Your Ultimate On-Site Conversion Tool (<=2.5)

In late 2023, security researchers uncovered a critical Missing Authorization vulnerability in Convertful – Your Ultimate On-Site Conversion Tool WordPress plugin from Ruslan Suhar. Cataloged as

Jan 2, 2025 WordPress Exploit

CVE-2023-46083 - Exploiting Missing Authorization in Kali Forms Contact Form Builder (Drag & Drop) – How Unauthorized Access is Possible (With Exploit Steps)

--- Kali Forms is a popular WordPress plugin designed to help users easily build contact forms using a drag-and-drop interface. While the plugin empowers website