Skip to main content
CVE-2023-48283 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in PressTigers Simple Testimonials Showcase allows Cross Site Request Forgery.1.5. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Simple Testimonials Showcase
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2023-5772 MEDIUM This Month

The Debug Log Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2.1. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Debug Log Manager
NVD VulDB
CVSS 3.1
4.3
EPSS
0.1%
CVE-2023-49094 MEDIUM PATCH This Month

Symbolicator is a symbolication service for native stacktraces and minidumps with symbol server support. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Symbolicator
NVD GitHub
CVSS 3.1
4.3
EPSS
0.7%
CVE-2023-37867 LOW Monitor

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR - Yet Another Star Rating Plugin for WordPress.3.8. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure WordPress Yet Another Stars Rating
NVD
CVSS 3.1
3.7
EPSS
0.2%
Prev Page 5 of 5

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy