Vulnerabilities > Bulletin

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-09	CVE-2023-2066	Unspecified vulnerability in Bulletin Announcement & Notification Banner - Bulletin 3.6.0 The Announcement & Notification Banner – Bulletin plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the 'bulletinwp_update_bulletin_status', 'bulletinwp_update_bulletin', 'bulletinwp_update_settings', 'bulletinwp_update_status', 'bulletinwp_export_bulletins', and 'bulletinwp_import_bulletins' functions functions in versions up to, and including, 3.6.0. network low complexity bulletin	4.3
2023-06-09	CVE-2023-2067	Unspecified vulnerability in Bulletin Announcement & Notification Banner - Bulletin 3.6.0/3.7.0 The Announcement & Notification Banner – Bulletin plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce validation on the 'bulletinwp_update_bulletin_status', 'bulletinwp_update_bulletin', 'bulletinwp_update_settings', 'bulletinwp_update_status', 'bulletinwp_export_bulletins', and 'bulletinwp_import_bulletins' functions in versions up to, and including, 3.7.0. network low complexity bulletin	5.4

Vulnerabilities > Bulletin {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Bulletin"}]}