Lucene search

CVE-2024-4742 Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress <= 1.2.5 - Authenticated (Contributor+) SQL Injection

🗓️ 20 Jun 2024 02:20:08Reported by WordfenceType

Vulnerability in Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress <= 1.2.

Reporter	Title	Published	Views	Family All 4
CVE	CVE-2024-4742	20 Jun 202402:15	–	cve
Vulnrichment	CVE-2024-4742 Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress <= 1.2.5 - Authenticated (Contributor+) SQL Injection	20 Jun 202402:08	–	vulnrichment
NVD	CVE-2024-4742	20 Jun 202402:15	–	nvd
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 17, 2024 to June 23, 2024)	27 Jun 202415:00	–	wordfence

[
  {
    "vendor": "youzify",
    "product": "Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "1.2.5",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/youzify/trunk/includes/public/core/functions/youzify-account-verification-functions.php
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/08bd24ca-eec6-4b62-af49-192496e65a5b

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jun 2024 02:08Current

CVSS39.8

EPSS0.0005