βΌ CVE-2023-3105 βΌ
π Read
via "National Vulnerability Database".
The LearnDash LMS plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 4.6.0. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for attackers with with existing account access at any level, to change user passwords and potentially take over administrator accounts.π Read
via "National Vulnerability Database".
βΌ CVE-2023-3082 βΌ
π Read
via "National Vulnerability Database".
The Post SMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email contents in versions up to, and including, 2.5.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.π Read
via "National Vulnerability Database".
βΌ CVE-2023-30927 βΌ
π Read
via "National Vulnerability Database".
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2023-3199 βΌ
π Read
via "National Vulnerability Database".
The MStore API plugin for WordPress is vulnerable to Cross-Site Request Forgery due to missing nonce validation on the mstore_update_status_order_title function. This makes it possible for unauthenticated attackers to update status order title via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.π Read
via "National Vulnerability Database".
βΌ CVE-2023-30935 βΌ
π Read
via "National Vulnerability Database".
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33884 βΌ
π Read
via "National Vulnerability Database".
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2023-3023 βΌ
π Read
via "National Vulnerability Database".
The WP EasyCart plugin for WordPress is vulnerable to time-based SQL Injection via the Γ’β¬ΛorderbyΓ’β¬β’ parameter in versions up to, and including, 5.4.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with administrator-level or above permissions, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.π Read
via "National Vulnerability Database".
βΌ CVE-2023-29414 βΌ
π Read
via "National Vulnerability Database".
A CWE-120: Buffer Copy without Checking Size of Input (Classic Buffer Overflow) vulnerabilityexists that could cause user privilege escalation if a local user sends specific string input to alocal function call.π Read
via "National Vulnerability Database".
βΌ CVE-2023-3158 βΌ
π Read
via "National Vulnerability Database".
The Mail Control plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an email subject in versions up to, and including, 0.2.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33891 βΌ
π Read
via "National Vulnerability Database".
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48450 βΌ
π Read
via "National Vulnerability Database".
In bluetooth service, there is a possible missing params check. This could lead to local denial of service with System execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2023-30929 βΌ
π Read
via "National Vulnerability Database".
In telephony service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2023-3202 βΌ
π Read
via "National Vulnerability Database".
The MStore API plugin for WordPress is vulnerable to Cross-Site Request Forgery due to missing nonce validation on the mstore_update_firebase_server_key function. This makes it possible for unauthenticated attackers to update the firebase server key to push notification when order status changed via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.π Read
via "National Vulnerability Database".
βΌ CVE-2020-36761 βΌ
π Read
via "National Vulnerability Database".
The Top 10 plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.10.4. This is due to missing or incorrect nonce validation on the tptn_export_tables() function. This makes it possible for unauthenticated attackers to generate an export of the top 10 table via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.π Read
via "National Vulnerability Database".
βΌ CVE-2023-30917 βΌ
π Read
via "National Vulnerability Database".
In DMService, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2023-30937 βΌ
π Read
via "National Vulnerability Database".
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33879 βΌ
π Read
via "National Vulnerability Database".
In music service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2023-2562 βΌ
π Read
via "National Vulnerability Database".
The Gallery Metabox for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the refresh_metabox function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to obtain a list of images attached to a post.π Read
via "National Vulnerability Database".
βΌ CVE-2023-33880 βΌ
π Read
via "National Vulnerability Database".
In music service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2023-30921 βΌ
π Read
via "National Vulnerability Database".
In messaging service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.π Read
via "National Vulnerability Database".
π’ Microsoft SQL password-guessing attacks rising as hackers pivot from OneNote vectors π’
π Read
via "ITPro".
Database admins are advised to enforce better controls as attacks ending in ransomware are being observed π Read
via "ITPro".
ITPro
Microsoft SQL password-guessing attacks rising as hackers pivot from OneNote vectors
Database admins are advised to enforce better controls as attacks ending in ransomware are being observed