Lista CVE 2023/25xxx

CVE nel gruppo: 25xxx

CVE-2023-25020 (N/A)

CVE-2023-25021 (WordPress Arigato Autoresponder and Newsletter Plugin <= 2.7.1.1 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25022 (WordPress FareHarbor for WordPress Plugin <= 3.6.6 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25023 (WordPress Watu Quiz Plugin <= 3.3.8 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25024 (WordPress WebinarIgnition Plugin <= 2.14.2 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25025 (WordPress Icegram Collect plugin <= 1.3.8 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25026 (WordPress WP-CopyProtect [Protect your blog posts] Plugin <= 3.1.0 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25027 (WordPress PayPal Brasil para WooCommerce plugin <= 1.4.2 - Broken Access Control vulnerability)

CVE-2023-25028 (WordPress Chained Quiz Plugin <= 1.3.2.5 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25029 (WordPress CC Custom Taxonomy Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25030 (WordPress WP Social Bookmarking Light Plugin <= 2.0.7 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25031 (WordPress Buy Me a Coffee plugin <= 3.7 - Broken Access Control vulnerability)

CVE-2023-25032 (WordPress Arigato Autoresponder and Newsletter Plugin <= 2.7.1 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25033 (WordPress Print, PDF, Email by PrintFriendly Plugin <= 5.5.1 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25034 (WordPress Social Share Boost Plugin <= 4.5 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25035 (WordPress WP Clean Up Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25036 (WordPress Quick Contact Form plugin <= 8.0.3.1 - Broken Access Control vulnerability)

CVE-2023-25037 (WordPress Social Media Icons Widget Plugin <= 1.6 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25038 (WordPress Booking Calendar Contact Form plugin <= 1.2.34 - Broken Access Control vulnerability)

CVE-2023-25039 (WordPress For the visually impaired Plugin <= 0.58 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25040 (WordPress Google Maps CP plugin <= 1.0.43 - Missing Authorization Leading To Feedback Submission Vulnerability)

CVE-2023-25041 (WordPress Shortcodes Ultimate Plugin <= 5.12.6 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25042 (WordPress Monolit Theme <= 2.0.6 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25043 (WordPress oAuth Twitter Feed for Developers Plugin <= 2.3.0 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25044 (WordPress Data Tables Generator by Supsystic Plugin <= 1.10.25 is vulnerable to Broken Access Control)

CVE-2023-25045 (WordPress Social Share Boost Plugin <= 4.4 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25046 (WordPress RSVPMarker Plugin <= 9.9.3 is vulnerable to SQL Injection)

CVE-2023-25047 (WordPress Podlove Podcast Publisher Plugin <= 3.8.2 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25048 (WordPress RSVPMarker Plugin <= 9.9.3 is vulnerable to SQL Injection)

CVE-2023-25049 (WordPress Fantastic Content Protector Free plugin <= 2.6 - Broken Access Control vulnerability)

CVE-2023-25050 (WordPress eCommerce Product Catalog Plugin <= 3.3.4 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25051 (WordPress Shortcodes Ultimate plugin <= 5.12.6 - Arbitrary File Download vulnerability)

CVE-2023-25052 (WordPress Comment Reply Notification Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25054 (WordPress Yandex.News Feed by Teplitsa Plugin <= 1.12.5 is vulnerable to Cross Site Scripting (XSS))

CVE-2023-25055 (WordPress RSVPMarker Plugin <= 10.6.6 is vulnerable to Remote Code Execution (RCE))

CVE-2023-25056 (WordPress Google XML Sitemap for Videos Plugin <= 2.6.1 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25057 (WordPress Feed Them Social Plugin <= 3.0.2 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25058 (WordPress Libsyn Publisher Hub Plugin <= 1.3.2 is vulnerable to Sensitive Data Exposure)

CVE-2023-25059 (WordPress Schema – All In One Schema Rich Snippets Plugin <= 1.6.5 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-25060 (WordPress avalex Plugin <= 3.0.3 is vulnerable to Cross Site Scripting (XSS))