PHP - CVE CyberSecurity Database News (Page 13)

Jan 4, 2025 WordPress Exploit PHP

CVE-2024-10957 - UpdraftPlus: WP Backup & Migration Plugin in WordPress is Vulnerable to PHP Object Injection

A recently discovered vulnerability, CVE-2024-10957, affects the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability impacts all versions up to and including 1.

Jan 2, 2025 WordPress Exploit PHP

CVE-2023-47807: Missing Authorization Vulnerability in 10Web 10WebAnalytics Allows Exploiting Incorrectly Configured Access Control Security Levels

A recent vulnerability, registered as CVE-2023-47807, has been discovered in the 10Web 10WebAnalytics plugin. This issue involves missing authorization checks that consequently enable the exploitation

Jan 2, 2025 Exploit PHP

CVE-2023-48739: Missing Authorization vulnerability in Porto Theme leads to Exploiting Incorrectly Configured Access Control Security Levels

If you're using the popular Porto Theme for your website, you might need to take a closer look at the access control security

Jan 2, 2025 WordPress API PHP

CVE-2023-48758 - Missing Authorization Vulnerability in Crocoblock JetEngine Exploiting Incorrectly Configured Access Control Security Levels

Recently, a major security vulnerability has been discovered within the popular WordPress plugin, Crocoblock JetEngine. This plugin is widely used by designers and developers for

Jan 2, 2025 WordPress PHP

CVE-2023-47188 - Missing Authorization Vulnerability in PressTigers Simple Job Board: Exploit Details and Remediation Steps

Attention to all users of the PressTigers Simple Job Board plugin! A recent vulnerability - CVE-2023-47188 - has been identified in versions prior to 2.