Common Vulnerabilities and Exposures is a rundown of sections-each containing a recognizable proof number, a portrayal, and no less than one open reference-for freely known cybersecurity vulnerabilities. CVE Entries are utilized in various cybersecurity items and administrations from around the globe.

CVE-2020-12077: WordPress plugin vulnerability

April 24, 2020 0

The mappress-google-maps-for-wordpress plugin before 2.53.9 for WordPress does not correctly implement AJAX functions with nonces (or capability checks), leading to remote code execution. References wordpress.org/plugins/mappress-google-maps-for-wordpress/#developers www.wordfence.com/blog/2020/04/critical-vulnerabilities-patched-in-mappress-maps-plugin/

CVE-2020-12076: WordPress plugin vulnerability

April 24, 2020 0

The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPress lacks CSRF nonce checks for AJAX actions. One consequence of this is stored XSS. References www.wordfence.com/blog/2020/03/vulnerabilities-patched-in-the-data-tables-generator-by-supsystic-plugin/

CVE-2020-12075: WordPress plugin vulnerability

April 24, 2020 0

The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPress lacks capability checks for AJAX actions. References www.wordfence.com/blog/2020/03/vulnerabilities-patched-in-the-data-tables-generator-by-supsystic-plugin/

CVE-2020-12074: WordPress plugin vulnerability

April 24, 2020 0

The users-customers-import-export-for-wp-woocommerce plugin before 1.3.9 for WordPress allows subscribers to import administrative accounts via CSV. References www.wordfence.com/blog/2020/03/vulnerability-patched-in-import-export-wordpress-users/

CVE-2020-12073: WordPress plugin vulnerability

April 24, 2020 0

The responsive-add-ons plugin before 2.2.7 for WordPress has incorrect access control for wp-admin/admin-ajax.php?action= requests. References www.wordfence.com/blog/2020/03/severe-flaws-patched-in-responsive-ready-sites-importer-plugin/

1 52 53 54 55 56 71