Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3,046
Critical0
High3,046
Medium0
Reset
Showing 2461-2480 of 3046 records
Threat Entry Updated 2024-11-21

CVE-2023-2996 - Before 12 Plugin

The Jetpack WordPress plugin before 12.1.1 does not validate uploaded files, allowing users with author roles or above to manipulate existing files on the site, deleting arbitrary files, and in rare cases achieve Remote Code Execution via phar deserialization.

PLUGIN Before 12

CVE-2023-2996

HIGH CVSS 8.8 2023-06-27
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2877 - Formidable Forms Plugin

The Formidable Forms WordPress plugin before 6.3.1 does not adequately authorize the user or validate the plugin URL in its functionality for installing add-ons. This allows a user with a role as low as Subscriber to install and activate arbitrary plugins of arbitrary versions from the WordPress.org plugin repository onto the site, leading to Remote Code Execution.

PLUGIN Formidable Forms

CVE-2023-2877

HIGH CVSS 8.8 2023-06-27
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2628 - Before 3 Plugin

The KiviCare WordPress plugin before 3.2.1 does not have CSRF checks (either flawed or missing completely) in various AJAX actions, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks. This includes, but is not limited to: Delete arbitrary appointments/medical records/etc, create/update various users (patients, doctors etc)

PLUGIN Before 3

CVE-2023-2628

HIGH CVSS 8.8 2023-06-27
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2842 - Wp Inventory Manager Plugin

The WP Inventory Manager WordPress plugin before 2.1.0.14 does not have CSRF checks, which could allow attackers to make logged-in admins delete Inventory Items via a CSRF attack

PLUGIN Wp Inventory Manager

CVE-2023-2842

HIGH CVSS 8.1 2023-06-27
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2744 - Before 1 Plugin

The ERP WordPress plugin before 1.12.4 does not properly sanitise and escape the `type` parameter in the `erp/v1/accounting/v1/people` REST API endpoint before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.

PLUGIN Before 1

CVE-2023-2744

HIGH CVSS 7.2 2023-06-27
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2592 - Before 3 Plugin

The FormCraft WordPress plugin before 3.9.7 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.

PLUGIN Before 3

CVE-2023-2592

HIGH CVSS 7.2 2023-06-27
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2482 - Responsive Css Editor Plugin

The Responsive CSS EDITOR WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high-privilege users such as admin.

PLUGIN Responsive Css Editor

CVE-2023-2482

HIGH CVSS 7.2 2023-06-27
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-3388 - Beautiful Cookie Consent Banner Plugin

The Beautiful Cookie Consent Banner for WordPress is vulnerable to Stored Cross-Site Scripting via the 'nsc_bar_content_href' parameter in versions up to, and including, 2.10.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. A partial patch was made available in 2.10.1 and the issue was fully patched in 2.10.2.

PLUGIN Beautiful Cookie Consent Banner

CVE-2023-3388

HIGH CVSS 7.2 2023-06-24
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-3325 - Cms Commander Plugin

The CMS Commander plugin for WordPress is vulnerable to authorization bypass due to the use of an insufficiently unique cryptographic signature on the 'cmsc_add_site' function in versions up to, and including, 2.287. This makes it possible for unauthenticated attackers to the plugin to change the '_cmsc_public_key' in the plugin config, providing access to the plugin's remote control functionalities, such as creating an admin access URL, which can be used for privilege escalation. This can only be exploited if the plugin has not been configured yet, however, if combined with another…

PLUGIN Cms Commander

CVE-2023-3325

HIGH CVSS 8.1 2023-06-20
Open Full Technical Breakdown
Threat Entry Updated 2024-12-12

CVE-2023-2719 - Before 3 Plugin

The SupportCandy WordPress plugin before 3.1.7 does not properly sanitise and escape the `id` parameter for an Agent in the REST API before using it in an SQL statement, leading to an SQL Injection exploitable by users with a role as low as Subscriber.

PLUGIN Before 3

CVE-2023-2719

HIGH CVSS 8.8 2023-06-19
Open Full Technical Breakdown
Threat Entry Updated 2024-12-12

CVE-2023-2359 - Slider Revolution Plugin

The Slider Revolution WordPress plugin through 6.6.12 does not check for valid image files upon import, leading to an arbitrary file upload which may be escalated to Remote Code Execution in some server configurations.

PLUGIN Slider Revolution

CVE-2023-2359

HIGH CVSS 8.8 2023-06-19
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2805 - Before 3 Plugin

The SupportCandy WordPress plugin before 3.1.7 does not properly sanitise and escape the agents[] parameter in the set_add_agent_leaves AJAX function before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.

PLUGIN Before 3

CVE-2023-2805

HIGH CVSS 7.2 2023-06-19
Open Full Technical Breakdown
Threat Entry Updated 2024-12-12

CVE-2023-2492 - Querywall Plug N Play Firewall Plugin

The QueryWall: Plug'n Play Firewall WordPress plugin through 1.1.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.

PLUGIN Querywall Plug N Play Firewall

CVE-2023-2492

HIGH CVSS 7.2 2023-06-19
Open Full Technical Breakdown
Threat Entry Updated 2024-12-12

CVE-2023-2221 - Wp Custom Cursors Plugin

The WP Custom Cursors WordPress plugin before 3.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Admin.

PLUGIN Wp Custom Cursors

CVE-2023-2221

HIGH CVSS 7.2 2023-06-19
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-3295 - Unlimited Elements For Elementor Plugin

The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) for WordPress is vulnerable to arbitrary file uploads due to missing file type validation of files in the file manager functionality in versions up to, and including, 1.5.66 . This makes it possible for authenticated attackers, with contributor-level permissions and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. The issue was partially patched in version 1.5.66 and fully patched in 1.5.67. CVE-2023-31231 appears to be a duplicate of this issue.

PLUGIN Unlimited Elements For Elementor

CVE-2023-3295

HIGH CVSS 8.8 2023-06-17
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2607 - Multiple Page Generator Plugin

The Multiple Page Generator Plugin for WordPress is vulnerable to time-based SQL Injection via the orderby and order parameters in versions up to, and including, 3.3.17 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers with administrator privileges to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Multiple Page Generator

CVE-2023-2607

HIGH CVSS 7.2 2023-06-09
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2484 - Ldap Login For Intranet Sites Plugin

The Active Directory Integration plugin for WordPress is vulnerable to time-based SQL Injection via the orderby and order parameters in versions up to, and including, 4.1.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers with administrator privileges to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Ldap Login For Intranet Sites

CVE-2023-2484

HIGH CVSS 7.2 2023-06-09
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2249 - Wpforo Forum Plugin

The wpForo Forum plugin for WordPress is vulnerable to Local File Include, Server-Side Request Forgery, and PHAR Deserialization in versions up to, and including, 2.1.7. This is due to the insecure use of file_get_contents without appropriate verification of the data being supplied to the function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to retrieve the contents of files like wp-config.php hosted on the system, perform a deserialization attack and possibly achieve remote code execution, and make requests to internal services.

PLUGIN Wpforo Forum

CVE-2023-2249

HIGH CVSS 8.8 2023-06-09
Open Full Technical Breakdown
Scroll to top