ByteOS Network

WP Like Button

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2023-47820

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-4.3||MEDIUM

EPSS-0.10% / 27.60%

7 Day CHG+0.01%

Published-09 Dec, 2024 | 11:30

Updated-09 Dec, 2024 | 13:49

WordPress WP Like Button plugin <= 1.7.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in CRUDLab WP Like Button allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Like Button: from n/a through 1.7.0.

Vendor-CRUDLab

Product-WP Like Button

CWE ID-CWE-862

Missing Authorization

CVE-2023-40199

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-5.4||MEDIUM

EPSS-0.11% / 29.38%

7 Day CHG~0.00%

Published-03 Oct, 2023 | 12:33

Updated-20 Sep, 2024 | 13:15

WordPress WP Like Button Plugin <= 1.7.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery (CSRF) vulnerability in CRUDLab WP Like Button plugin <= 1.7.0 versions.

Vendor-crudlab CRUDLab

Product-wp_like_button WP Like Button

CWE ID-CWE-352

Cross-Site Request Forgery (CSRF)