This is due to missing nonce validation on the ls_parse_vcita_callback function. This makes it possible for auĬVE-2023-2301 - The Contact Form Builder by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.9.1.
This allows authenticated attackers, with contributor-level permissions or above, to change the 'ĬVE-2023-2298 - The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'business_id' parameter in versions up to, and including, 4.2.10 due to insufficient input sanitization and output esĬVE-2023-2299 - The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized medication of data via the /wp-json/vcita-wordpress/v1/actions/auth REST-API endpoint in versions up to, and including, 4.2.10 due to a missĬVE-2023-2300 - The Contact Form Builder by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'email' parameter in versions up to, and including, 4.9.1 due to insufficient input sanitization and output escaping. This allows authenticated attackers, with contributor-level permissions or above, to chĬVE-2023-0584 - The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST 'update_options' function in versions up to, and including, 1.57.0.5. It is pĬVE-2023-0583 - The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST 'update_vk_blocks_options' function in versions up to, and including, 1.57.0.5. The manipulation of the argument question_id leads to sql injection. Affected is the function doUpdateQuestion of the file btn_functions.php. The manipulation leads to uncontrollĬVE-2023-3094 - A vulnerability classified as critical has been found in code-projects Agro-School Management System 1.0.
Minecraft sigma client vpn code#
This vulnerability affects unknown code in the library CRYPTBASE.dll. CVE-2023-3091 - ** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Captura up to 8.0.0.
0 kommentar(er)
