Lucene search

CVE-2024-6491 Getwid – Gutenberg Blocks <= 2.0.10 - Missing Authentication to MailChimp API key update

🗓️ 20 Jul 2024 06:45:43Reported by WordfenceType

Getwid – Gutenberg Blocks plugin missing authentication for MailChimp API ke

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
RedhatCVE	CVE-2024-6491	23 May 202508:00	–	redhatcve
Patchstack	WordPress Getwid – Gutenberg Blocks Plugin <= 2.0.10 is vulnerable to Broken Access Control	22 Jul 202400:00	–	patchstack
Vulnrichment	CVE-2024-6491 Getwid – Gutenberg Blocks <= 2.0.10 - Missing Authentication to MailChimp API key update	20 Jul 202406:43	–	vulnrichment
NVD	CVE-2024-6491	20 Jul 202407:15	–	nvd
CVE	CVE-2024-6491	20 Jul 202407:15	–	cve
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 15, 2024 to July 21, 2024)	25 Jul 202414:49	–	wordfence

[
  {
    "vendor": "jetmonsters",
    "product": "Getwid – Gutenberg Blocks",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "2.0.10",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/fb2be4cd-2641-4f7f-993c-1c78e5a1d5da
plugins	www.plugins.trac.wordpress.org/browser/getwid/trunk/includes/blocks/mailchimp.php
plugins	www.plugins.trac.wordpress.org/changeset/3119180/getwid/trunk/includes/blocks/mailchimp.php

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo