cbcvebase.

Roland Barker Xnau Webdesign Participants Database vulnerabilities

4 known vulnerabilities affecting roland_barker_xnau_webdesign/participants_database.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-43141P3CRITICALCVSS 9.8≥ n/a, ≤ 2.5.9.22024-08-13
CVE-2024-43141 [CRITICAL] CWE-502 CVE-2024-43141: Deserialization of Untrusted Data vulnerability in Roland Barker, xnau webdesign Participants Databa Deserialization of Untrusted Data vulnerability in Roland Barker, xnau webdesign Participants Database allows Object Injection.This issue affects Participants Database: from n/a through 2.5.9.2.
nvd
CVE-2023-48751P3HIGHCVSS 8.8≥ n/a, ≤ 2.5.52023-12-19
CVE-2023-48751 [HIGH] CWE-352 CVE-2023-48751: Missing Authorization, Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdes Missing Authorization, Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database allows Accessing Functionality Not Properly Constrained by ACLs, Cross Site Request Forgery.This issue affects Participants Database: from n/a through 2.5.5.
nvd
CVE-2023-31235P3HIGHCVSS 8.8≥ n/a, ≤ 2.4.92023-11-09
CVE-2023-31235 [HIGH] CWE-352 CVE-2023-31235: Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Databa Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database plugin <= 2.4.9 versions.
nvd
CVE-2022-47612P4MEDIUMCVSS 4.3≥ n/a, ≤ 2.4.52023-02-28
CVE-2022-47612 [MEDIUM] CWE-352 CVE-2022-47612: Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Databa Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database plugin <= 2.4.5 leads to list column update.
nvd
Roland Barker Xnau Webdesign Participants Database vulnerabilities | cvebase