CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

The CMP WordPress plugin before 4.0.19 allows any user, even not logged in, to arbitrarily change the coming soon page layout.

*   **cmp-coming-soon-maintenance/trunk/readme.txt**
    
    r2633406
    
    r2657597
    
     
    
    6
    
    6
    
    Requires PHP: 5.6
    
    7
    
    7
    
    Tested up to: 5.8
    
    8
    
     
    
    Stable tag: 4.0.18
    
     
    
    8
    
    Stable tag: 4.0.19
    
    9
    
    9
    
    License: GPLv2 or later
    
    10
    
    10
    
    License URI: https://www.gnu.org/licenses/gpl-2.0.html
    
    …
    
    …
    
     
    
    161
    
    161
    
    162
    
    162
    
    \== Changelog ==
    
     
    
    163
    
    <h4>CMP 4.0.19 - 14-Jan-22</h4>
    
     
    
    164
    
    <ul>
    
     
    
    165
    
        <li>Fixed security issue, when unauthenticated user could update the CSS styles for CMP themes.</li>
    
     
    
    166
    
        <li>Updated purge caching function</li>
    
     
    
    167
    
    </ul>
    
    163
    
    168
    
    <h4>CMP 4.0.18 - 22-Nov-21</h4>
    
    164
    
    169
    
    <ul>

Headline

CVE-2022-0188: Changeset 2657597 for cmp-coming-soon-maintenance – WordPress Plugin Repository

CVE: Latest News