Headline

CVE-2023-2601

The wpbrutalai WordPress plugin before 2.0.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by admin via CSRF.

1 year ago

CVE

Open in Source

#sql #csrf #wordpress #perl

WordPress WP Brutal AI plugin versions prior to 2.0.0 suffer from cross site request forgery and remote SQL injection vulnerabilities.

1 year ago

Packet Storm

Open in Source

#sql #csrf #vulnerability #wordpress #php #perl #auth

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

11 months ago

11 months ago

11 months ago

11 months ago

11 months ago

Headline

CVE-2023-2601

Related news

CVE: Latest News