Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ CVE-2022-2312 | Student Result or Employee Database Plugin up to 1.7.4 on WordPress AJAX Action cross-site request forgery

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š CVE-2022-2312 | Student Result or Employee Database Plugin up to 1.7.4 on WordPress AJAX Action cross-site request forgery


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: vuldb.com

A vulnerability has been found in Student Result or Employee Database Plugin up to 1.7.4 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component AJAX Action Handler. The manipulation leads to cross-site request forgery. This vulnerability is known as CVE-2022-2312. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component. ...



๐Ÿ“Œ Student Result or Employee Database <= 1.6.3 - Auth Bypass


๐Ÿ“ˆ 45.2 Punkte

๐Ÿ“Œ WP-jobhunt Plugin up to 2.4 on WordPress AJAX Request admin-ajax.php cs_reset_pass() privilege escalation


๐Ÿ“ˆ 40.33 Punkte

๐Ÿ“Œ WP-jobhunt Plugin up to 2.4 on WordPress AJAX Request admin-ajax.php cs_employer_ajax_profile() information disclosure


๐Ÿ“ˆ 40.33 Punkte

๐Ÿ“Œ Simple Student Result Plugin bis 1.6.3 auf WordPress functions.php fn_ssr_add_st_submit() schwache Authentisierung


๐Ÿ“ˆ 37.37 Punkte

๐Ÿ“Œ Simple Student Result Plugin up to 1.6.3 on WordPress functions.php fn_ssr_add_st_submit() weak authentication


๐Ÿ“ˆ 37.37 Punkte

๐Ÿ“Œ Ajax Pagination Plugin 1.1 on WordPress wp-admin/admin-ajax.php ajax_navigation loop directory traversal


๐Ÿ“ˆ 35.34 Punkte

๐Ÿ“Œ Ajax Load More Plugin up to 5.3.1 on WordPress /wp-admin/admin-ajax.php repeater sql injection


๐Ÿ“ˆ 35.34 Punkte

๐Ÿ“Œ Ajax Pagination Plugin 1.1 auf WordPress wp-admin/admin-ajax.php ajax_navigation loop Directory Traversal


๐Ÿ“ˆ 35.34 Punkte

๐Ÿ“Œ Ajax Pagination Plugin 1.1 auf WordPress wp-admin/admin-ajax.php ajax_navigation loop Directory Traversal


๐Ÿ“ˆ 35.34 Punkte

๐Ÿ“Œ CVE-2023-5313 | phpkobo Ajax Poll Script 3.18 ajax-poll.php improper enforcement of a single, unique action


๐Ÿ“ˆ 34.35 Punkte

๐Ÿ“Œ nelio-ab-testing Plugin up to 4.5.10 on WordPress ajax/iesupport.php Server-Side Request Forgery


๐Ÿ“ˆ 33.64 Punkte

๐Ÿ“Œ nelio-ab-testing Plugin up to 4.5.8 on WordPress ajax/iesupport.php Server-Side Request Forgery


๐Ÿ“ˆ 33.64 Punkte

๐Ÿ“Œ CVE-2020-36670 | NEX-Forms Plugin up to 7.7.1 on WordPress AJAX Action authorization (ID 2427162)


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-0876 | WP Meta SEO Plugin up to 4.5.2 on WordPress AJAX Action redirect


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-5559 | 10Web Booster Plugin up to 2.24.17 on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-6155 | Quiz Maker Plugin prior 6.4.9.5 on WordPress AJAX Action ays_quiz_author_user_search improper authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-51678 | Doofinder for WooCommerce Plugin up to 2.0.33 on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-5235 | Ovic Responsive WPBakery Plugin up to 1.2.8 on WordPress AJAX Action deserialization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-6139 | Essential Real Estate Plugin up to 4.3.x on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-6066 | WP Custom Widget area Plugin up to 1.2.5 on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-5922 | Royal Elementor Addons and Templates Plugin up to 1.3.80 on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-6824 | WP Customer Area Plugin up to 8.2.0 on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-6741 | WP Customer Area Plugin up to 8.2.0 on WordPress AJAX Action access control


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2024-0235 | EventON Plugin up to 2.2.6/4.5.4 on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2024-0238 | EventON Plugin up to 2.2.6/4.5.4 on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ CVE-2023-6279 | Woostify Sites Library Plugin up to 1.4.7 on WordPress AJAX Action authorization


๐Ÿ“ˆ 31.87 Punkte

๐Ÿ“Œ FetLife: Able to see highest poll result without voting or view result


๐Ÿ“ˆ 31.44 Punkte

๐Ÿ“Œ Easy Form Builder Plugin up to 1.0 on WordPress AJAX Action EFBP_verify_upload_file unrestricted upload


๐Ÿ“ˆ 30.69 Punkte

๐Ÿ“Œ WPBakery Page Builder Clipboard Plugin up to 4.5.7 on WordPress AJAX Action authorization


๐Ÿ“ˆ 30.69 Punkte

๐Ÿ“Œ Redirection for Contact Form 7 Plugin up to 2.3.3 on WordPress AJAX Action delete_action_post authorization


๐Ÿ“ˆ 30.69 Punkte

๐Ÿ“Œ Redirection for Contact Form 7 Plugin up to 2.3.3 on WordPress AJAX Action import_from_debug authorization


๐Ÿ“ˆ 30.69 Punkte

๐Ÿ“Œ Redirection for Contact Form 7 Plugin up to 2.3.3 on WordPress AJAX Action wpcf7r_get_nonce authorization


๐Ÿ“ˆ 30.69 Punkte

๐Ÿ“Œ Login as User or Customer Plugin up to 1.7 on Wordpress AJAX Action cp_plugins_do_button_job_later_callback improper authorization


๐Ÿ“ˆ 30.69 Punkte

๐Ÿ“Œ Visitor Traffic Real Time Statistics Plugin up to 2.11 on WordPress AJAX Action cp_plugins_do_button_job_later_callback improper authorization


๐Ÿ“ˆ 30.69 Punkte

๐Ÿ“Œ Tree Sitemap Plugin up to 2.8 on WordPress AJAX Action cp_plugins_do_button_job_later_callback improper authorization


๐Ÿ“ˆ 30.69 Punkte











matomo