Skip to main content
CVE-2023-2897 LOW PATCH Monitor

The Brizy Page Builder plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.4.18. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure WordPress Brizy
NVD VulDB
CVSS 3.1
3.7
EPSS
0.1%
CVE-2023-2599 LOW PATCH Monitor

The Active Directory Integration plugin for WordPress is vulnerable to Cross-Site Request Forgery leading to time-based SQL Injection via the orderby and order parameters in versions up to, and. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable, no authentication required. This Cross-Site Request Forgery (CSRF) vulnerability could allow attackers to trick authenticated users into performing unintended actions.

SQLi WordPress CSRF Denial Of Service Active Directory Integration Ldap Integration
NVD VulDB
CVSS 3.1
3.1
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy