Sideblog Project - Sideblog CVE

Filtered by vendor Sideblog Project Subscribe

Filtered by product Sideblog

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-1787	1 Sideblog Project	1 Sideblog	2023-12-10	3.5 LOW	5.4 MEDIUM
The Sideblog WordPress plugin through 6.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored Cross-Site Scripting due to the lack of sanitisation and escaping

Vulnerabilities (CVE)