Lucene search
PatchstackCVE-2024-43266HistoryAug 18, 2024 - 10:15 p.m.
CVE-2024-43266
2024-08-1822:15:09
CWE-639
Patchstack
web.nvd.nist.gov
24
cve-2024-43266
authorization bypass
user-controlled key
wp job portal
vulnerability
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
EPSS
0
Percentile
9.5%
Authorization Bypass Through User-Controlled Key vulnerability in WP Job Portal.This issue affects WP Job Portal: from n/a through 2.1.6.
Affected configurations
Node
wp_job_portalwp_job_portalRange≤2.1.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wp_job_portal | wp_job_portal | * | cpe:2.3:a:wp_job_portal:wp_job_portal:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "wp-job-portal",
"product": "WP Job Portal",
"vendor": "WP Job Portal",
"versions": [
{
"lessThanOrEqual": "2.1.6",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2024-43266
2024-08-18 22:15:09
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
EPSS
0
Percentile
9.5%
Related for CVE-2024-43266