Vulnerabilities > Dineshkarki

DATE CVE VULNERABILITY TITLE RISK
2023-10-10 CVE-2023-44261 Cross-Site Request Forgery (CSRF) vulnerability in Dineshkarki Block Plugin Update
Cross-Site Request Forgery (CSRF) vulnerability in Dinesh Karki Block Plugin Update plugin <= 3.3 versions.
network
low complexity
dineshkarki CWE-352
8.8
2022-04-15 CVE-2022-27851 Cross-Site Request Forgery (CSRF) vulnerability in Dineshkarki USE ANY Font
Cross-Site Request Forgery (CSRF) in Use Any Font (WordPress plugin) <= 6.1.7 allows an attacker to deactivate the API key.
4.3