Approved changes feed: RSS · Atom

cpe:2.3:a:ajay:webberzone_top_10_—_popular_posts:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAjay (3149a988-0836-54ad-b40c-7dd40b9714d4)
ProductWebberzone Top 10 — Popular Posts (bff054c5-5225-5bd2-af1e-d6165240b9c3)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-36761 vulnerable 2026-06-08 05:25:49.558422 Top 10 <= 2.9.4 - Cross-Site Request Forgery Bypass
MEDIUM (4.3)
The Top 10 plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.10.4. This is due to missing or incorrect nonce validation on the tptn_export_tables() function. This makes it possible for unauthenticated attackers to generate an export of the top 10 table via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Published: 2023-07-12T07:21:51.472Z
Updated: 2026-04-08T17:32:17.861Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.