CVE-2023-46632 - How “My Shortcodes” Plugin’s Missing Authorization Bug Lets Attackers Exploit WordPress Sites
---
The WordPress plugin “My Shortcodes” is intended to make it easy for users to create their own shortcodes. Starting from its earliest versions up
CVE-2023-46628 - Exploiting Missing Authorization in RedLettuce Plugins WP Word Count – A Deep Dive
CVE-2023-46628 reveals a critical missing authorization vulnerability found in the popular WP Word Count plugin by RedLettuce Plugins. This security issue is due to insufficiently
CVE-2023-46635 - Missing Authorization in YITH WooCommerce Product Add-Ons – Exploiting Broken Access Controls
WordPress and WooCommerce are some of the most widely used tools for building e-commerce stores. Extensions or plugins expand what your shop can do. But,
CVE-2023-46631 - How Missing Authorization in RevenueHunt Product Recommendation Quiz for eCommerce Exposes Your Store
In late 2023, a critical vulnerability—CVE-2023-46631—was disclosed in the popular Product Recommendation Quiz for eCommerce WordPress plugin by RevenueHunt. This bug affects all
CVE-2023-46616 - Exploiting Missing Authorization in NSquared Draw Attention Plugin (<=2..15)
In late 2023, a critical vulnerability was identified in the popular WordPress plugin Draw Attention, developed by NSquared. Tracked as CVE-2023-46616, this flaw stems from
Episode
00:00:00
00:00:00