CVE-2022-3518 A problem with SourceCodester Sanitization Management System 1.0 is an unknown function of the component User Creation Handler.
The vulnerability can be exploited via a malicious link. In order to exploit it, the victim must click on a link. By exploiting this vulnerability,
CVE-2022-41623 Data exposure of sensitive information in Villatheme ALD using WooCommerce premium plugin = 1.1.0.
Find and avoid these data leak risks at all costs. These are the major cause of data leakage that can lead to sensitive data exposure
CVE-2022-3506 XSS was stored in GitHub repository barrykooij/related-posts-for-wp prior to 2.1.3.
XSS refers to the practice of injecting malicious code into a user’s browser, which might be exploited to steal sensitive information, change the displayed
CVE-2022-38086 The CSRF vulnerability in the Shortcodes Ultimate plugin = 5.12.0 could lead to plugin preset settings change.
This CSRF vulnerability allows an attacker to change preset settings of the Shortcode Ultimate plugin. As most of the Shortcode Ultimate users don’t have
CVE-2021-36915 Cozmoslabs Profile Builder plugin = 3.6.0 has a CSRF vulnerability that allows uploading the JSON file and updating the options.
Plugin can be exploited by logged in user or by user with WordPress administrator role. Attack can be performed via vulnerable online import/export functionality,
Episode
00:00:00
00:00:00