CVE-2022-40223 - Nonce Token Leakage and Missing Authorization in SearchWP Premium Plugin <= 4.2.5 on WordPress Leading to Plugin Settings Change
The popular SearchWP premium plugin for WordPress, used by thousands of websites for advanced search functionality, has been found vulnerable to a security flaw, identified
CVE-2022-40128: Cross-Site Request Forgery (CSRF) Vulnerability in Advanced Order Export for WooCommerce Plugin on WordPress leads to Unauthorized File Download
A recently identified vulnerability, CVE-2022-40128, has been found in the Advanced Order Export for WooCommerce plugin (versions <= 3.3.2), which is widely used
CVE-2022-41136 - Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) in Vladimir Anokhin's Shortcodes Ultimate plugin <= 5.12. on WordPress
Cybersecurity researchers have discovered a critical vulnerability in Vladimir Anokhin's Shortcodes Ultimate plugin for WordPress, which could allow an attacker to perform a
CVE-2022-27855: A Detailed Analysis of the Cross-Site Request Forgery (CSRF) Vulnerability in Fatcat Apps Analytics Cat Plugin <= 1..9 on WordPress - Plugin Settings Change Exploit
Cross-Site Request Forgery (CSRF) is a common web vulnerability that enables an attacker to perform unauthorized actions on a website on behalf of the targeted
CVE-2022-43491 - Cross-Site Request Forgery (CSRF) Vulnerability in Advanced Dynamic Pricing for WooCommerce Plugin <= 4.1.5 on WordPress: Exploit Details, Code Snippets, and Original References
A Cross-Site Request Forgery (CSRF) vulnerability has been recently discovered in the "Advanced Dynamic Pricing for WooCommerce" plugin <= 4.1.5 on
Episode
00:00:00
00:00:00