CVE-2023-2087
- EPSS 0.08%
- Veröffentlicht 09.06.2023 06:16:03
- Zuletzt bearbeitet 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.0.6. This is due to missing or incorrect nonce validation on the save function. This makes it possible for unauthenticated attac...
CVE-2023-2086
- EPSS 0.12%
- Veröffentlicht 09.06.2023 06:16:03
- Zuletzt bearbeitet 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the template_count function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attacke...
CVE-2023-2085
- EPSS 0.12%
- Veröffentlicht 09.06.2023 06:16:03
- Zuletzt bearbeitet 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the templates function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attackers to...
CVE-2023-2083
- EPSS 0.08%
- Veröffentlicht 09.06.2023 06:16:02
- Zuletzt bearbeitet 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the save function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attackers to save...
CVE-2023-2084
- EPSS 0.11%
- Veröffentlicht 09.06.2023 06:16:02
- Zuletzt bearbeitet 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the get function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attackers to obtai...