A vulnerability, which was classified as problematic, has been found in Improved Include Page Plugin up to 1.2 on WordPress (WordPress Plugin). Affected by this issue is some unknown functionality of the component Shortcode Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Improved Include Page Plugin up to 1.2 on WordPress Shortcode post_type/post_status access control
CVE-2023-28843 : PAYPAL UP TO 3.16.3 ON PRESTASHOP SQL INJECTION
Description PrestaShop/paypal is an open source module for the PrestaShop web commerce ecosystem which provides paypal payment support. A SQL
CVE-2023-28727 : PANASONIC AISEG2 UP TO 2.93A HEADER X-FORWARDED-FOR IMPROPER AUTHENTICATION
Description Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers. References https://www2.panasonic.biz/jp/densetsu/aiseg/firmup_info.html
CVE-2022-36980 : IVANTI AVALANCHE 184.108.40.20690 ENTERPRISESERVER SERVICE TOCTOU
Description This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 220.127.116.1190. Although authentication is required