WordPress - CVE CyberSecurity Database News (Page 23)

Feb 28, 2024 CSRF XSS WordPress Exploit Matt Martz & Andy Stratton Page Restrict

CVE-2024-24702: Cross-Site Request Forgery (CSRF) vulnerability in Matt Martz & Andy Stratton Page Restrict (versions n/a - 2.5.5) - Exploit Details & Mitigation Strategies

Security vulnerabilities are a growing concern for developers and users alike. With the increasing reliance on web applications, it becomes crucial to identify and resolve

Feb 28, 2024 WordPress Exploit SQL PHP Joel Starnes postMash – custom post order

CVE-2024-25927: SQL Injection Vulnerability in postMash – Custom Post Order Plugin

A recently discovered security vulnerability (CVE-2024-25927) may potentially impact users of the WordPress plugin called "postMash – custom post order" developed by Joel Starnes.

Feb 28, 2024 WordPress Exploit SQL PHP miniorange Malware Scanner

CVE-2024-25902 - SQL Injection Vulnerability in miniorange Malware Scanner versions up to 4.7.2

A recent security vulnerability, registered as CVE-2024-25902, has been discovered in the miniorange Malware Scanner plugin for WordPress. This SQL Injection vulnerability allows attackers to

Feb 28, 2024 WordPress API Exploit

CVE-2024-1861 - Unauthorized Data Modification Vulnerability in WordPress Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan Plugin

CVE-2024-1861 is a newly discovered vulnerability affecting all versions up to and including version 4.52 of the Disable Json API, Login Lockdown, XMLRPC, Pingback,

Feb 28, 2024 CSRF WordPress Exploit PHP

CVE-2024-1954 - Critical Vulnerability in Oliver POS WooCommerce Plugin Leaves Your WordPress Site at Risk

A critical vulnerability, dubbed CVE-2024-1954, has been discovered in the popular Oliver POS WooCommerce plugin for WordPress. This vulnerability affects all versions up to, and