๐ด Cops Nab BreachForums Boss in New York ๐ด
๐ Read
via "Dark Reading".
The alleged mastermind of hacker forum Breach Forums, "pompompurin," has been arrested in New York City, according to court documents.๐ Read
via "Dark Reading".
Dark Reading
Cops Nab BreachForums Boss in New York
The alleged mastermind of hacker forum BreachForums, "pompompurin," has been arrested in New York City, according to court documents.
โผ CVE-2023-0876 โผ
๐ Read
via "National Vulnerability Database".
The WP Meta SEO WordPress plugin before 4.5.3 does not authorize several ajax actions, allowing low-privilege users to make updates to certain data and leading to an arbitrary redirect vulnerability.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-27586 โผ
๐ Read
via "National Vulnerability Database".
CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a specially crafted SVG file that allows them to perform a server-side request forgery or denial of service. Version 2.7.0 disables CairoSVG's ability to access other files online by default.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0167 โผ
๐ Read
via "National Vulnerability Database".
The GetResponse for WordPress plugin through 5.5.31 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-3894 โผ
๐ Read
via "National Vulnerability Database".
The WP OAuth Server (OAuth Authentication) WordPress plugin before 4.2.5 does not have CSRF check when deleting a client, and does not ensure that the object to be deleted is actually a client, which could allow attackers to make a logged in admin delete arbitrary client and post via a CSRF attack.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0937 โผ
๐ Read
via "National Vulnerability Database".
The VK All in One Expansion Unit WordPress plugin before 9.87.1.0 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0940 โผ
๐ Read
via "National Vulnerability Database".
The ProfileGrid WordPress plugin before 5.3.1 provides an AJAX endpoint for resetting a user password but does not implement proper authorization. This allows a user with low privileges, such as subscriber, to change the password of any account, including Administrator ones.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-22288 โผ
๐ Read
via "National Vulnerability Database".
HTML Email Injection in Tribe29 Checkmk <=2.1.0p23; <=2.0.0p34, and all versions of Checkmk 1.6.0 allows an authenticated attacker to inject malicious HTML into Emails๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0630 โผ
๐ Read
via "National Vulnerability Database".
The Slimstat Analytics WordPress plugin before 4.9.3.3 does not prevent subscribers from rendering shortcodes that concatenates attributes directly into an SQL query.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0340 โผ
๐ Read
via "National Vulnerability Database".
The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their content. RCE could also be achieved if the attacker manage to upload a malicious image containing PHP code, and then include it via the affected attribute, on a default WP install, authors could easily achieve that given that they have the upload_file capability.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0369 โผ
๐ Read
via "National Vulnerability Database".
The GoToWP WordPress plugin through 5.1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0875 โผ
๐ Read
via "National Vulnerability Database".
The WP Meta SEO WordPress plugin before 4.5.3 does not properly sanitize and escape inputs into SQL queries, leading to a blind SQL Injection vulnerability that can be exploited by subscriber+ users.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0145 โผ
๐ Read
via "National Vulnerability Database".
The Saan World Clock WordPress plugin through 1.8 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0865 โผ
๐ Read
via "National Vulnerability Database".
The WooCommerce Multiple Customer Addresses & Shipping WordPress plugin before 21.7 does not ensure that the address to add/update/retrieve/delete and duplicate belong to the user making the request, or is from a high privilege users, allowing any authenticated users, such as subscriber to add/update/duplicate/delete as well as retrieve addresses of other users.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0175 โผ
๐ Read
via "National Vulnerability Database".
The Responsive Clients Logo Gallery Plugin for WordPress plugin through 1.1.9 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0370 โผ
๐ Read
via "National Vulnerability Database".
The WPB Advanced FAQ WordPress plugin through 1.0.6 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0365 โผ
๐ Read
via "National Vulnerability Database".
The React Webcam WordPress plugin through 1.2.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0911 โผ
๐ Read
via "National Vulnerability Database".
The WordPress Shortcodes Plugin รขโฌโ Shortcodes Ultimate WordPress plugin before 5.12.8 does not validate the user meta to be retrieved via the user shortcode, allowing any authenticated users such as subscriber to retrieve arbitrary user meta (except the user_pass), such as the user email and activation key by default.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0631 โผ
๐ Read
via "National Vulnerability Database".
The Paid Memberships Pro WordPress plugin before 2.9.12 does not prevent subscribers from rendering shortcodes that concatenate attributes directly into an SQL query.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-1517 โผ
๐ Read
via "National Vulnerability Database".
Cross-site Scripting (XSS) - DOM in GitHub repository pimcore/pimcore prior to 10.5.19.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-0890 โผ
๐ Read
via "National Vulnerability Database".
The WordPress Shortcodes Plugin รขโฌโ Shortcodes Ultimate WordPress plugin before 5.12.8 does not ensure that posts to be displayed via some shortcodes are already public and can be accessed by the user making the request, allowing any authenticated users such as subscriber to view draft, private or even password protected posts. It is also possible to leak the password of protected posts๐ Read
via "National Vulnerability Database".