Lucene search

CVE-2024-22296 WordPress 12 Step Meeting List plugin <= 3.14.28 - Broken Access Control vulnerability

🗓️ 10 Jun 2024 08:57:07Reported by PatchstackType

WordPress 12 Step Meeting List plugin Broken Access Control and Missing Authorization vulnerabilitie

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Patchstack	WordPress 12 Step Meeting List Plugin <= 3.14.28 is vulnerable to Broken Access Control	17 Jan 202400:00	–	patchstack
CVE	CVE-2024-22296	10 Jun 202408:15	–	cve
Vulnrichment	CVE-2024-22296 WordPress 12 Step Meeting List plugin <= 3.14.28 - Broken Access Control vulnerability	10 Jun 202408:07	–	vulnrichment
NVD	CVE-2024-22296	10 Jun 202408:15	–	nvd
WPVulnDB	12 Step Meeting List < 3.14.29 - Subscriber+ CSV Download	24 Jan 202400:00	–	wpvulndb
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (January 15, 2024 to January 21, 2024)	25 Jan 202414:37	–	wordfence

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "12-step-meeting-list",
    "product": "12 Step Meeting List",
    "vendor": "Code for Recovery",
    "versions": [
      {
        "changes": [
          {
            "at": "3.14.29",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "3.14.28",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/12-step-meeting-list/wordpress-12-step-meeting-list-plugin-3-14-26-broken-access-control-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jun 2024 08:07Current

CVSS34.3

EPSS0.00259

CWE-862