PHP - CVE CyberSecurity Database News (Page 12)

Jan 4, 2025 WordPress Exploit PHP

CVE-2024-10957 - UpdraftPlus: WP Backup & Migration Plugin in WordPress is Vulnerable to PHP Object Injection

A recently discovered vulnerability, CVE-2024-10957, affects the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability impacts all versions up to and including 1.

Jan 2, 2025 WordPress Exploit PHP

CVE-2023-47807: Missing Authorization Vulnerability in 10Web 10WebAnalytics Allows Exploiting Incorrectly Configured Access Control Security Levels

A recent vulnerability, registered as CVE-2023-47807, has been discovered in the 10Web 10WebAnalytics plugin. This issue involves missing authorization checks that consequently enable the exploitation

Jan 2, 2025 Exploit PHP

CVE-2023-48739: Missing Authorization vulnerability in Porto Theme leads to Exploiting Incorrectly Configured Access Control Security Levels

If you're using the popular Porto Theme for your website, you might need to take a closer look at the access control security

Jan 2, 2025 WordPress API PHP

CVE-2023-48758 - Missing Authorization Vulnerability in Crocoblock JetEngine Exploiting Incorrectly Configured Access Control Security Levels

Recently, a major security vulnerability has been discovered within the popular WordPress plugin, Crocoblock JetEngine. This plugin is widely used by designers and developers for

Jan 2, 2025 Exploit PHP

CVE-2023-47187 - Missing Authorization Vulnerability in Labib Ahmed's Animated Rotating Words That Exploits Incorrectly Configured Access Control Security Levels

--- Labib Ahmed's Animated Rotating Words (http://www.example.com/labibapps/animated-rotating-words) is a popular JavaScript plugin used by web developers to add