CVE-2024-2368
- EPSS 0.12%
- Veröffentlicht 05.06.2024 07:15:45
- Zuletzt bearbeitet 21.11.2024 09:09:36
The Mollie Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.13. This is due to missing or incorrect nonce validation on the duplicateForm() function. This makes it possible for unauthent...
CVE-2024-1400
- EPSS 0.07%
- Veröffentlicht 11.03.2024 22:15:54
- Zuletzt bearbeitet 05.02.2025 20:56:20
The Mollie Forms plugin for WordPress is vulnerable to unauthorized post or page duplication due to a missing capability check on the duplicateForm function in all versions up to, and including, 2.6.3. This makes it possible for authenticated attacke...
CVE-2024-1645
- EPSS 0.13%
- Veröffentlicht 11.03.2024 22:15:54
- Zuletzt bearbeitet 21.01.2025 21:12:54
The Mollie Forms plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the exportRegistrations function in all versions up to, and including, 2.6.3. This makes it possible for authenticated attackers, ...