CVE-2023-36509
- EPSS 0.03%
- Veröffentlicht 13.12.2024 15:15:16
- Zuletzt bearbeitet 13.12.2024 15:15:16
Missing Authorization vulnerability in Suresh Chand CHP Ads Block Detector allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CHP Ads Block Detector: from n/a through 3.9.5.
CVE-2023-2352
- EPSS 0.09%
- Veröffentlicht 31.08.2023 06:15:09
- Zuletzt bearbeitet 21.11.2024 07:58:26
The CHP Ads Block Detector plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.9.4. This is due to missing or incorrect nonce validation on the chp_abd_action function. This makes it possible for unaut...
CVE-2023-2353
- EPSS 0.07%
- Veröffentlicht 31.08.2023 06:15:09
- Zuletzt bearbeitet 21.11.2024 07:58:26
The CHP Ads Block Detector plugin for WordPress is vulnerable to unauthorized plugin settings update and reset due to a missing capability check on the chp_abd_action function in versions up to, and including, 3.9.4. This makes it possible for subscr...
CVE-2023-2354
- EPSS 0.09%
- Veröffentlicht 31.08.2023 06:15:09
- Zuletzt bearbeitet 21.11.2024 07:58:26
The CHP Ads Block Detector plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings reachable though an AJAX action in versions up to, and including, 3.9.4 due to insufficient input sanitization and output escaping. This m...