Lucene search
K

CVE-2024-0869

🗓️ 05 Feb 2024 21:21:34Reported by WordfenceType 
cve
 cve
🔗 web.nvd.nist.gov👁 93 Views🌐 WEB

The Instant Images plugin for WordPress is vulnerable to unauthorized option updates up to version 6.1.0

Related
Detection
Affected
Refs
Paths
ReporterTitlePublishedViews
Family
Circl
CVE-2024-0869
21 Feb 202420:11
circl
CNNVD
WordPress plugin Instant Images security vulnerability
5 Feb 202400:00
cnnvd
CNNVD
WordPress plugin Instant Images 安全漏洞
17 May 202400:00
cnnvd
CVE
CVE-2024-33569
17 May 202408:14
cve
Cvelist
CVE-2024-0869 Instant Images <= 6.1.0 - Authenticated (Author+) Arbitrary Options Update
5 Feb 202421:21
cvelist
Cvelist
CVE-2024-33569 WordPress Instant Images plugin <= 6.1.0 - Arbitrary Option Update to Privilege Escalation vulnerability
17 May 202408:14
cvelist
EUVD
EUVD-2024-16652
3 Oct 202520:07
euvd
EUVD
EUVD-2024-31306
3 Oct 202520:07
euvd
NVD
CVE-2024-0869
5 Feb 202422:16
nvd
NVD
CVE-2024-33569
17 May 202409:15
nvd
Rows per page
NVD
Vulners
[
  {
    "vendor": "connekthq",
    "product": "Instant Images – One-click Image Uploads from Unsplash, Openverse, Pixabay, Pexels, and Giphy",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "6.1.0",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]
ParameterPositionPathDescriptionCWE
optionsrequest body/wp-json/instant-images/licenseUnauthorized arbitrary options update via the plugin's REST API endpoint (instant-images/license) allowing authors or higher roles to modify options without proper ownership check.CWE-862

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 06:54Current
6.9Medium risk
Vulners AI Score6.9
CVSS 3.16.5 - 8.8
EPSS0.00791
SSVC
93