Security
Headlines
HeadlinesLatestCVEs

Tag

#php

CVE-2023-3343: functions-ur-core.php in user-registration/tags/3.0.1/includes – WordPress Plugin Repository

The User Registration plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 3.0.1 via deserialization of untrusted input from the 'profile-pic-url' parameter. This allows authenticated attackers, with subscriber-level permissions and above, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.

CVE
#sql#xss#csrf#ios#google#js#java#wordpress#php#perl#pdf#auth#ssl
CVE-2023-3342: User Registration by WPEverest WordPess plugin Arbitrary File Upload

The User Registration plugin for WordPress is vulnerable to arbitrary file uploads due to a hardcoded encryption key and missing file type validation on the 'ur_upload_profile_pic' function in versions up to, and including, 3.0.2. This makes it possible for authenticated attackers with subscriber-level capabilities or above to upload arbitrary files on the affected site's server which may make remote code execution possible. This was partially patched in version 3.0.2 and fully patched in version 3.0.2.1.

CVE-2023-3644

A vulnerability was found in SourceCodester Service Provider Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /classes/Master.php?f=save_inquiry. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. VDB-233890 is the identifier assigned to this vulnerability.

CVE-2023-37630: Simple Online Piggery (Farm) Management System using PHP with Source Code

Online Piggery Management System 1.0 is vulnerable to Cross Site Scripting (XSS). An unauthenticated user can POST JavaScript code to "manage-breed.php" resulting in Persistent XSS.

WordPress User Registration 3.0.2 Arbitrary File Upload

The User Registration plugin for WordPress is vulnerable to arbitrary file uploads due to a hard-coded encryption key and missing file type validation on the ur_upload_profile_pic function in versions up to, and including, 3.0.2. This makes it possible for authenticated attackers with subscriber-level capabilities or above to upload arbitrary files on the affected site's server which may make remote code execution possible. This was partially patched in version 3.0.2 and fully patched in version 3.0.2.1.

AtTestimonials CMS 1.2 Missing Authentication

AtTestimonials CMS version 1.2 suffers from a missing authentication vulnerability.

Atom CMS 2.0 Directory Traversal

Atom CMS version 2.0 suffers from a directory traversal vulnerability.

Asanhamayesh CMS 3.4.6 Directory Traversal

Asanhamayesh CMS version 3.4.6 suffers from a directory traversal vulnerability.

ARTISTRY LIMITED LMS 0.5 Insecure Settings

ARTISTRY LIMITED LMS version 0.5 appears to leave default credentials installed after installation.

CVE-2023-37627: PoC for CVE-2023-37627

Code-projects Online Restaurant Management System 1.0 is vulnerable to SQL Injection. Through SQL injection, an attacker can bypass the admin panel and view order records, add items, delete items etc.