CWE:
 

Tytuł
Data
Autor
Low
Listeo WordPress Theme <= 1.6.10 - Multiple Authenticated IDOR Vulnerabilities
17.05.2021
m0ze
Med.
HomeSweet - Real Estate WordPress Theme v1.4 - IDOR leading to arbitrary deletion of ads
13.07.2020
Vlad Vector
Med.
CarSpot – Dealership Wordpress Classified Theme v2.2.0 Multiple Vulnerabilities
17.01.2020
m0ze
Med.
Fortify Software Security Center (SSC) 17.10/17.20/18.10 Information Disclosure (2)
24.12.2018
alt3kx


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2022-12-05
Waiting for details
CVE-2022-3846

Updating...
 

 
The Workreap WordPress theme before 2.6.3 has a vulnerability with the notifications feature as it's possible to read any user's notification (employer or freelancer) as the notification ID is brute-forceable.

 
2022-11-28
Waiting for details
CVE-2022-3511

Updating...
 

 
The Awesome Support WordPress plugin before 6.1.2 does not ensure that the exported tickets archive to be downloaded belongs to the user making the request, allowing a low privileged user, such as subscriber to download arbitrary exported tickets via an IDOR vector

 
2022-11-21
Waiting for details
CVE-2022-1579

Updating...
 

 
The function check_is_login_page() uses headers for the IP check, which can be easily spoofed.

 
Waiting for details
CVE-2022-1581

Updating...
 

 
The WP-Polls WordPress plugin before 2.76.0 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass IP-based limitations to vote in certain situations.

 
2022-09-19
Waiting for details
CVE-2022-1580

Updating...
 

 
The Site Offline Or Coming Soon Or Maintenance Mode WordPress plugin before 1.5.3 prevents users from accessing a website but does not do so if the URL contained certain keywords. Adding those keywords to the URL's query string would bypass the plugin's main feature.

 
2022-09-16
Waiting for details
CVE-2022-2877

Updating...
 

 
The Titan Anti-spam & Security WordPress plugin before 7.3.1 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers.

 
Waiting for details
CVE-2022-2913

Updating...
 

 
The Login No Captcha reCAPTCHA WordPress plugin before 1.7 doesn't check the proper IP address allowing attackers to spoof IP addresses on the allow list and bypass the need for captcha on the login screen.

 
2022-08-29
Waiting for details
CVE-2022-2080

Updating...
 

 
The Sensei LMS WordPress plugin before 4.5.2 does not ensure that the sender of a private message is either the teacher or the original sender, allowing any authenticated user to send messages to arbitrary private conversation via a IDOR attack. Note: Attackers are not able to see responses/messages between the teacher and student

 
2022-08-22
Waiting for details
CVE-2022-2198

Updating...
 

 
The WPQA Builder WordPress plugin before 5.7 which is a companion plugin to the Hilmer and Discy , does not check authorization before displaying private messages, allowing any logged in user to read other users private message using the message id, which can easily be brute forced.

 
2022-08-15
Waiting for details
CVE-2022-2535

Updating...
 

 
The SearchWP Live Ajax Search WordPress plugin before 1.6.2 does not ensure that users making a live search are limited to published posts only, allowing unauthenticated users to make a crafted query disclosing private/draft/pending post titles along with their permalink

 

 


Copyright 2022, cxsecurity.com

 

Back to Top