Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2023-50902
- EPSS 0.15%
- Published 29.12.2023 13:15:09
- Last modified 21.11.2024 08:37:30
Cross-Site Request Forgery (CSRF) vulnerability in WPExpertsio New User Approve.This issue affects New User Approve: from n/a through 2.5.1.
4.3
CVE-2022-1625
- EPSS 0.1%
- Published 27.06.2022 09:15:09
- Last modified 21.11.2024 06:41:07
The New User Approve WordPress plugin before 2.4 does not have CSRF check in place when updating its settings and adding invitation codes, which could allow attackers to add invitation codes (for bypassing the provided restrictions) and to change plu...
1