Lucene search

CVE-2024-32148

🗓️ 11 Jun 2024 15:05:16Reported by PatchstackType

Salesforce Pardot Missing Authorization Vulnerability

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2024-32148 WordPress Pardot plugin <= 2.1.0 - Broken Access Control vulnerability	11 Jun 202414:44	–	cvelist
NVD	CVE-2024-32148	11 Jun 202415:16	–	nvd
Vulnrichment	CVE-2024-32148 WordPress Pardot plugin <= 2.1.0 - Broken Access Control vulnerability	11 Jun 202414:44	–	vulnrichment
Patchstack	WordPress Pardot Plugin <= 2.1.0 is vulnerable to Broken Access Control	12 Apr 202400:00	–	patchstack
WPVulnDB	Pardot < 2.1.1 - Missing Authorization	17 Apr 202400:00	–	wpvulndb
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (April 8, 2024 to April 14, 2024)	18 Apr 202415:58	–	wordfence

Vulners

Node

salesforce pardotRange≤2.1.0wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "pardot",
    "product": "Pardot",
    "vendor": "Salesforce",
    "versions": [
      {
        "changes": [
          {
            "at": "2.1.1",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.1.0",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/pardot/wordpress-pardot-plugin-2-1-0-broken-access-control-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Jun 2024 15:16Current

4.6Medium risk

Vulners AI Score4.6

CVSS34.3

EPSS0.00079

SSVC

CWE-862