Lucene search
HistoryJun 10, 2024 - 8:15 a.m.
CVE-2024-23524
cve-2024-23524
reserved
disclosure
nvd
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
0.0004 Low
EPSS
Percentile
9.1%
Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a through 2.0.30.
Affected configurations
Node
ontraport_inc.pilotpressRange≤2.0.30
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "pilotpress",
"product": "PilotPress",
"vendor": "ONTRAPORT Inc.",
"versions": [
{
"changes": [
{
"at": "2.0.31",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.0.30",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-23524
2024-06-10 08:15:48
wpvulndb
wpvulndb
PilotPress < 2.0.31 - Subscriber+ Report Access & DB Transients Purging
2024-02-05 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
wordfence
wordfence
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-23524