Totally Secure

Security Information and News

NVD NVD Nist GOV

NVD – CVE-2021-4387

ByTotally Secure

Jul 7, 2023
Added CPE Configuration 
OR
     *cpe:2.3:a:wpopal:opal_estate:*:*:*:*:*:wordpress:*:* versions up to (including) 1.6.11
Added CVSS V3.1 
NIST AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Changed Reference Type 
https://blog.nintechnet.com/25-wordpress-plugins-vulnerable-to-csrf-attacks/ No Types Assigned
https://blog.nintechnet.com/25-wordpress-plugins-vulnerable-to-csrf-attacks/ Third Party Advisory
Changed Reference Type 
https://blog.nintechnet.com/more-wordpress-plugins-and-themes-vulnerable-to-csrf-attacks/ No Types Assigned
https://blog.nintechnet.com/more-wordpress-plugins-and-themes-vulnerable-to-csrf-attacks/ Third Party Advisory
Changed Reference Type 
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-1/ No Types Assigned
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-1/ Third Party Advisory
Changed Reference Type 
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-2/ No Types Assigned
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-2/ Third Party Advisory
Changed Reference Type 
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-3/ No Types Assigned
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-3/ Third Party Advisory
Changed Reference Type 
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-4/ No Types Assigned
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-4/ Third Party Advisory
Changed Reference Type 
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-5/ No Types Assigned
https://blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-5/ Exploit, Third Party Advisory
Changed Reference Type 
https://plugins.trac.wordpress.org/browser/opal-estate/trunk/inc/ajax-functions.php#L177 No Types Assigned
https://plugins.trac.wordpress.org/browser/opal-estate/trunk/inc/ajax-functions.php#L177 Not Applicable
Changed Reference Type 
https://www.wordfence.com/threat-intel/vulnerabilities/id/2645899c-2b6b-48bd-8f33-2a837a951c5e?source=cve No Types Assigned
https://www.wordfence.com/threat-intel/vulnerabilities/id/2645899c-2b6b-48bd-8f33-2a837a951c5e?source=cve Third Party Advisory

By Totally Secure

Related Post

NVD NVD Nist GOV

NVD – CVE-2017-20187

Nov 7, 2023 Totally Secure
NVD NVD Nist GOV

NVD – CVE-2017-7252

Nov 7, 2023 Totally Secure
NVD NVD Nist GOV

NVD – CVE-2018-25092

Nov 7, 2023 Totally Secure

You missed

CISA Bulletins Security US Cert

Vulnerability Summary for the Week of November 11, 2024

November 19, 2024 Totally Secure
CISA Bulletins Security US Cert

Vulnerability Summary for the Week of November 4, 2024

November 13, 2024 Totally Secure
CISA Bulletins Security US Cert

Vulnerability Summary for the Week of October 28, 2024

November 5, 2024 Totally Secure
CISA Bulletins Security US Cert

Vulnerability Summary for the Week of October 21, 2024

October 29, 2024 Totally Secure