Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2024-25906
- EPSS 0.1%
- Veröffentlicht 17.05.2024 09:15:26
- Zuletzt bearbeitet 21.11.2024 09:01:32
Authentication Bypass by Spoofing vulnerability in WP Happy Coders Comments Like Dislike allows Functionality Bypass.This issue affects Comments Like Dislike: from n/a through 1.2.2.
4.3
CVE-2023-3244
- EPSS 2.55%
- Veröffentlicht 17.08.2023 07:15:43
- Zuletzt bearbeitet 21.11.2024 08:16:47
The Comments Like Dislike plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the restore_settings function called via an AJAX action in versions up to, and including, 1.1.9. This makes it poss...
5.3
CVE-2021-24379
- EPSS 0.22%
- Veröffentlicht 21.06.2021 20:15:09
- Zuletzt bearbeitet 21.11.2024 05:52:57
The Comments Like Dislike WordPress plugin before 1.1.4 allows users to like/dislike posted comments, however does not prevent them from replaying the AJAX request to add a like. This allows any user (even unauthenticated) to add unlimited like/disli...
1