Skip to main content
CVE-2023-31237 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Dylan James Zephyr Project Manager.3.9. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Zephyr Project Manager
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2023-31229 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Directory Kit.1.9. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Wp Directory Kit
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2023-51675 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in AAM Advanced Access Manager - Restricted Content, Users & Roles, Enhanced Security and More.9.18. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Advanced Access Manager
NVD
CVSS 3.1
4.7
EPSS
0.2%
CVE-2023-51402 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Brain Storm Force Ultimate Addons for WPBakery Page Builder.19.17. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Ultimate Addons For Wpbakery Page Builder WPBakery Page Builder
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2023-51354 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in WebbaPlugins Appointment & Event Booking Calendar Plugin - Webba Booking.5.33. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Webba Booking
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2023-50902 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in WPExpertsio New User Approve.5.1. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF New User Approve
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2023-31293 MEDIUM This Month

An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) 6.3.8.6 (#718), allows remote attackers to obtain sensitive information and bypass profile restriction via improper access. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Cash Point Transport Optimizer
NVD
CVSS 3.1
4.3
EPSS
0.5%
CVE-2023-51517 MEDIUM This Month

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CodePeople Calculated Fields Form.2.28. Rated medium severity (CVSS 4.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Open Redirect Calculated Fields Form
NVD
CVSS 3.1
4.1
EPSS
0.1%
CVE-2023-28786 LOW Monitor

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in SolidWP Solid Security - Password, Two Factor Authentication, and Brute Force Protection.1.4. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Open Redirect Solid Security
NVD
CVSS 3.1
3.7
EPSS
0.2%
CVE-2023-22676 LOW Monitor

Missing Authorization vulnerability in Anders Thorborg.4.12. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Advanced Custom Fields Advanced Custom Fields
NVD
CVSS 3.1
3.1
EPSS
0.3%
CVE-2023-4674 This Week

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yaztek Software Technologies and Computer Systems E-Commerce Software allows SQL Injection. No vendor patch available.

SQLi E Commerce
NVD VulDB
EPSS
0.1%
Prev Page 4 of 4

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy