Vendor
Media Cp
Products
2
CVEs
6
Across products
6
Status
Private
Products
2- 4 CVEs
- 2 CVEs
Recent CVEs
6| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-23724 | 0.00 | — | 0.00 | May 23, 2023 | Cross-Site Request Forgery (CSRF) vulnerability in Winwar Media WP Email Capture plugin <= 3.9.3 versions. | |||
| CVE-2023-23723 | 0.00 | — | 0.00 | May 2, 2023 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Winwar Media WP Email Capture plugin <= 3.9.3 versions. | |||
| CVE-2023-23467 | 0.00 | — | 0.00 | Feb 15, 2023 | Media CP Media Control Panel latest version. Reflected XSS possible through unspecified endpoint. | |||
| CVE-2023-23464 | 0.00 | — | 0.00 | Feb 15, 2023 | Media CP Media Control Panel latest version. A Permissive Flash Cross-domain Policy may allow information disclosure. | |||
| CVE-2023-23465 | 0.00 | — | 0.00 | Feb 15, 2023 | Media CP Media Control Panel latest version. CSRF possible through unspecified endpoint. | |||
| CVE-2023-23466 | 0.00 | — | 0.00 | Feb 15, 2023 | Media CP Media Control Panel latest version. Insufficiently protected credential change. |
- CVE-2023-23724May 23, 2023risk 0.00cvss —epss 0.00
Cross-Site Request Forgery (CSRF) vulnerability in Winwar Media WP Email Capture plugin <= 3.9.3 versions.
- CVE-2023-23723May 2, 2023risk 0.00cvss —epss 0.00
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Winwar Media WP Email Capture plugin <= 3.9.3 versions.
- CVE-2023-23467Feb 15, 2023risk 0.00cvss —epss 0.00
Media CP Media Control Panel latest version. Reflected XSS possible through unspecified endpoint.
- CVE-2023-23464Feb 15, 2023risk 0.00cvss —epss 0.00
Media CP Media Control Panel latest version. A Permissive Flash Cross-domain Policy may allow information disclosure.
- CVE-2023-23465Feb 15, 2023risk 0.00cvss —epss 0.00
Media CP Media Control Panel latest version. CSRF possible through unspecified endpoint.
- CVE-2023-23466Feb 15, 2023risk 0.00cvss —epss 0.00
Media CP Media Control Panel latest version. Insufficiently protected credential change.