Vulnerabilities in learningtimes
6 resultsCVE-2023-47647MEDIUMWordPress BadgeOS plugin <= 3.7.1.6 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-2173MEDIUMBadgeOS <= 3.7.1.6 - Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary Post DeletionEPSS 0.4%CVE-2023-2172MEDIUMBadgeOS <= 3.7.1.6 - Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary Post Title OverwriteEPSS 0.4%CVE-2023-2174MEDIUMBadgeOS <= 3.7.1.6 - Missing Authorization in delete_badgeos_log_entriesEPSS 0.3%CVE-2023-2171MEDIUMBadgeOS <= 3.7.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortcodeEPSS 0.3%CVE-2022-41987MEDIUMWordPress BadgeOS Plugin <= 3.7.1.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%