Binhnguyenplus Ladiapp: Landing Page, Popupx, Marketing Automation, Affiliate Marketing…
8 CVEs affecting Binhnguyenplus Ladiapp: Landing Page, Popupx, Marketing Automation, Affiliate Marketing…. Latest disclosed: 2024-08-17. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-4730 | Medium | 5.3 | 2024-08-17 | The LadiApp plugn for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init_endpoint() function hooked via… |
CVE-2023-4731 | Medium | 4.3 | 2024-03-12 | The LadiApp plugn for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the init_endpoint() function hooked via 'init' in v… |
CVE-2023-4729 | Medium | 4.3 | 2024-03-12 | The LadiApp plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the publish_lp() function hooked via an AJAX actio… |
CVE-2023-4728 | Medium | 4.3 | 2024-03-12 | The LadiApp plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the publish_lp() function hooked via a… |
CVE-2023-4629 | Medium | 4.3 | 2024-03-12 | The LadiApp plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the save_config() function in versions up to, and… |
CVE-2023-4628 | Medium | 4.3 | 2024-03-12 | The LadiApp plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the ladiflow_save_hook() function in versions up t… |
CVE-2023-4627 | Medium | 4.3 | 2024-03-12 | The LadiApp plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_config() function in versions… |
CVE-2023-4626 | Medium | 4.3 | 2024-03-12 | The LadiApp plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ladiflow_save_hook() function in v… |