Stoute Web Solutions’ Post

New Vulnerability Report! CVSS 4.3 The WordPress Mesmerize Theme version 1.6.120 and earlier is vulnerable to Cross Site Request Forgery, potentially allowing malicious actors to force higher privileged users to execute unwanted actions under their current authentication. The CVSS score for this vulnerability is 4.3. Report link: https://lnkd.in/gmUXAchy #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 4.3 On 12 July 2024, it was reported that the WordPress Event post Plugin version 5.9.5 and earlier is vulnerable to Cross Site Request Forgery. This vulnerability enables malicious actors to compel higher privileged users to perform unwanted actions while authenticated. Report link: https://lnkd.in/gadSSimn #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 4.3 The WordPress i-transform Theme version 3.0.9 or lower is vulnerable to Cross Site Request Forgery, allowing malicious actors to force higher privileged users to execute unwanted actions under their current authentication. Report link: https://lnkd.in/guDUAebi #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 7.1 The WordPress Admin SMS Alert Plugin version 1.1.0 and earlier is vulnerable to Cross Site Request Forgery, allowing attackers to potentially make higher privileged users perform actions without their consent. CVSS score is 7.1. Report link: https://lnkd.in/gvH33cky #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 4.3 The WordPress Groundhogg Plugin version 3.4.2.3 and below is vulnerable to Cross Site Request Forgery, allowing malicious actors to force higher privileged users to execute unwanted actions. Report link: https://lnkd.in/gtWdwKGB #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 4.3 The WordPress Schema Lite Theme version 1.2.2 and earlier is vulnerable to Cross Site Request Forgery, which could enable malicious actors to force higher privileged users to perform unwanted actions under their authentication. Report link: https://lnkd.in/gYEHdbNE #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 4.2 On 16 August 2024, it was reported that the WordPress Download Plugins and Themes from Dashboard Plugin version 1.8.7 and earlier is vulnerable to Cross Site Request Forgery (CSRF), potentially allowing attackers to manipulate higher privileged users into executing unwanted actions. Report link: https://lnkd.in/gApgakJx #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 7.1 The WordPress SH Slideshow Plugin version 4.3 or earlier is vulnerable to Cross Site Request Forgery with a CVSS score of 7.1, allowing malicious actors to trick higher privileged users into performing unwanted actions under their current authentication. Report link: https://lnkd.in/g5wve4Rp #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 5.4 The WordPress Ninja Forms Plugin version 3.8.6 or earlier is vulnerable to Cross Site Request Forgery, potentially allowing malicious actors to force higher privileged users to execute unwanted actions under their current authentication. The vulnerability has a CVSS score of 5.4. Report link: https://lnkd.in/gwPbz2GW #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec

New Vulnerability Report! CVSS 4.3 On 28 June 2024, Patchstack reported that the WordPress Perfect Portfolio Theme version 1.2.0 or earlier is vulnerable to Cross Site Request Forgery CSRF, allowing malicious actors to force higher privileged users to execute unwanted actions under their current authentication. Report link: https://lnkd.in/gjEsv9Si #patchstack #cybersecurity #WordPress #opensource #vulnerability #updatenow #technews #securityalert #websecurity #infosec