CVE-2023-25989
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD
Description
Cross-Site Request Forgery (CSRF) vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading to dismiss or the popup.
Affected (10)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.2 | |
| Up to 2.0.7 | |
| Up to 2.1.3 | |
| Up to 1.2.7 | |
| Up to 1.2 | |
| Up to 1.1.3 | |
| Up to 1.6 | |
| Up to 1.4 | |
| Up to 1.1.6 | |
| Up to 1.0.10 |
References (20)
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: audit@patchstack.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Timeline
No history available yet.