Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2020-36738
- EPSS 0.1%
- Veröffentlicht 01.07.2023 04:15:10
- Zuletzt bearbeitet 21.11.2024 05:30:11
The Cool Timeline (Horizontal & Vertical Timeline) plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.2. This is due to missing or incorrect nonce validation on the ctl_save() function. This makes i...
8.8
CVE-2022-4950
- EPSS 5.1%
- Veröffentlicht 07.06.2023 02:15:15
- Zuletzt bearbeitet 21.11.2024 07:36:18
Several WordPress plugins developed by Cool Plugins are vulnerable to arbitrary plugin installation and activation that can lead to remote code execution by authenticated attackers with minimal permissions, such as a subscriber.
1