CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2019-15771 – ND Shortcodes <= 5.9.1 - Unauthenticated WordPress Options Update
https://notcve.org/view.php?id=CVE-2019-15771
The nd-shortcodes plugin before 6.0 for WordPress has a nopriv_ AJAX action that allows modification of the siteurl setting. El plugin nd-shortcodes versiones anteriores a 6.0 para WordPress, presenta una acción nopriv_ AJAX que permite la modificación de la configuración de siteurl The ND Shortcodes plugin for WordPress is vulnerable to arbitrary options update in versions up to, and including 5.9.1, due to missing capability checks and insufficient validation of the options supplied. This makes it possible for unauthenticated attackers to update arbitrary site options that can allow them to escalate their privileges to that of an administrator which can lead to a full site takeover. • https://threatpost.com/wordpress-plugins-exploited-in-ongoing-attack-researchers-warn/147671 https://wordpress.org/plugins/nd-shortcodes/#developers https://wpvulndb.com/vulnerabilities/9485 • CWE-269: Improper Privilege Management CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 9.8EPSS: 5%CPEs: 1EXPL: 2CVE-2017-1002001 – Mobile App Builder by WapPress <= 1.05 - Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2017-1002001
Vulnerability in wordpress plugin mobile-app-builder-by-wappress v1.05, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com. Existe una vulnerabilidad en el plugin mobile-app-builder-by-wappress v1.05 de WordPress. Este plugin incluye software CMS vulnerable sin licencia de http://www.invedion.com. Vulnerability in wordpress plugin mobile-app-builder-by-wappress v1.05, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com. There are no file upload authentication or capability checks which make it possible for attackers to upload arbitrary files on the affected sites server which may make remote code execution possible. • https://www.exploit-db.com/exploits/41540 http://www.vapidlabs.com/advisory.php?v=180 https://wordpress.org/plugins-wp/mobile-app-builder-by-wappress • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.8EPSS: 4%CPEs: 1EXPL: 2CVE-2017-1002000 – How to Create an App for Android iPhone Easytouch <= 3.0 - Missing Authorization
https://notcve.org/view.php?id=CVE-2017-1002000
Vulnerability in wordpress plugin mobile-friendly-app-builder-by-easytouch v3.0, The code in file ./mobile-friendly-app-builder-by-easytouch/server/images.php doesn't require authentication or check that the user is allowed to upload content. Existe una vulnerabilidad en el plugin mobile-friendly-app-builder-by-easytouch v3.0 en WordPress. El código en el archivo ./mobile-friendly-app-builder-by-easytouch/server/images.php no requiere autenticación o no verifica que el usuario tenga permisos para subir contenido. • https://www.exploit-db.com/exploits/41540 http://www.securityfocus.com/bid/96899 http://www.securityfocus.com/bid/96905 http://www.vapidlabs.com/advisory.php?v=179 https://wordpress.org/plugins-wp/mobile-friendly-app-builder-by-easytouch • CWE-434: Unrestricted Upload of File with Dangerous Type CWE-862: Missing Authorization •
CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 2CVE-2017-1002002 – Webapp builder 2.0 - Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2017-1002002
Vulnerability in wordpress plugin webapp-builder v2.0, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com/ Existe una vulnerabilidad en el plugin webapp-builder v2.0 de WordPress. Este plugin incluye software CMS vulnerable sin licencia de http://www.invedion.com/. The Webapp builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the via the ./webapp-builder/server/images.php file in version 2.0. This makes it possible for attackers to upload arbitrary files on the affected sites server which may make remote code execution possible. • https://www.exploit-db.com/exploits/41540 http://www.securityfocus.com/bid/96906 http://www.vapidlabs.com/advisory.php?v=181 https://wordpress.org/plugins-wp/webapp-builder • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2016-1000141 – Page Layout Builder <= 1.9.3 - Reflected Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2016-1000141
Reflected XSS in wordpress plugin page-layout-builder v1.9.3 XSS reflejado en el plugin de wordpress page-layout-builder v1.9.3 Reflected XSS in wordpress plugin page-layout-builder v1.9.3 in 'layout_settings_id' parameter. • http://www.securityfocus.com/bid/93804 http://www.vapidlabs.com/wp/wp_advisory.php?v=358 https://wordpress.org/plugins/page-layout-builder • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •