Lucene search
PatchstackCVE-2024-34383HistoryMay 06, 2024 - 6:15 p.m.
CVE-2024-34383
2024-05-0618:15:08
CWE-639
Patchstack
web.nvd.nist.gov
45
authorization bypass
user-controlled key
vulnerability
seopress
seo guys
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Authorization Bypass Through User-Controlled Key vulnerability in The SEO Guys at SEOPress SEOPress.This issue affects SEOPress: from n/a through 7.7.1.
Affected configurations
Node
the_seo_guys_at_seopressseopressRangeβ€7.7.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| the_seo_guys_at_seopress | seopress | * | cpe:2.3:a:the_seo_guys_at_seopress:seopress:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "wp-seopress",
"product": "SEOPress",
"vendor": "The SEO Guys at SEOPress",
"versions": [
{
"changes": [
{
"at": "7.7.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "7.7.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
SEOPress < 7.7 - Information Exposure
2024-05-07 00:00:00
vulnrichment
vulnrichment
cvelist
cvelist
nvd
nvd
CVE-2024-34383
2024-05-06 18:15:08
wordfence
wordfence
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-34383