CVE-2024-1318

🗓️ 20 Feb 2024 18:56:21Reported by WordfenceType

CVE-2024-1318 RSS Aggregator by Feedzy plugin for WordPress 4.4.2 allows unauthorized data modification

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2024-1318	3 Mar 202410:16	–	circl
CNNVD	WordPress Plugin RSS Aggregator by Feedzy Security Vulnerability	29 Feb 202400:00	–	cnnvd
Cvelist	CVE-2024-1318 RSS Aggregator by Feedzy <= 4.4.2 - Missing Authorization to Arbitrary Page Creation and Publication	20 Feb 202418:56	–	cvelist
EUVD	EUVD-2024-17076	3 Oct 202520:07	–	euvd
NVD	CVE-2024-1318	29 Feb 202401:43	–	nvd
Patchstack	WordPress RSS Aggregator by Feedzy Plugin <= 4.4.2 is vulnerable to Broken Access Control	12 Feb 202400:00	–	patchstack
Prion	Design/Logic Flaw	29 Feb 202401:43	–	prion
Positive Technologies	PT-2024-17938 · WordPress · The Rss Aggregator By Feedzy – Feed To Post	20 Feb 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-1318	23 May 202508:23	–	redhatcve
Vulnrichment	CVE-2024-1318	20 Feb 202418:56	–	vulnrichment

NVD

Vulners

Node

themeisle rss_aggregator_by_feedzyRange≤4.4.2wordpress

[
  {
    "vendor": "themeisle",
    "product": "RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "4.4.2",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/changeset/3033749/feedzy-rss-feeds/tags/4.4.3/includes/admin/feedzy-rss-feeds-admin.php
plugins	www.plugins.trac.wordpress.org/browser/feedzy-rss-feeds/tags/4.4.2/includes/admin/feedzy-rss-feeds-import.php
plugins	www.plugins.trac.wordpress.org/browser/feedzy-rss-feeds/tags/4.4.2/includes/admin/feedzy-rss-feeds-admin.php
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/181edcec-a57d-4516-935d-6777d2de77ae

08 Apr 2026 17:18Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.16.5

EPSS0.00212

SSVC

CWE-862