Lucene search

CVE-2024-1376

🗓️ 24 May 2024 07:10:15Reported by [email protected]Type

The Event post plugin for WordPress allows unauthorized bulk metadata updat

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2024-1376	24 May 202407:15	–	cve
WPVulnDB	Event post < 5.9.5 - Missing Authorization	23 May 202400:00	–	wpvulndb
Patchstack	WordPress Event post Plugin <= 5.9.4 is vulnerable to Broken Access Control	24 May 202400:00	–	patchstack
Cvelist	CVE-2024-1376 Event post <= 5.9.4 - Missing Authorization	24 May 202406:42	–	cvelist
Vulnrichment	CVE-2024-1376 Event post <= 5.9.4 - Missing Authorization	24 May 202406:42	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 20, 2024 to May 26, 2024)	30 May 202415:23	–	wordfence

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/926c09d5-3824-4745-99f6-50d9c945d252
plugins	www.plugins.trac.wordpress.org/changeset/3086840/event-post/trunk/eventpost.php

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 May 2024 07:15Current

4.7Medium risk

Vulners AI Score4.7

CVSS34.3

EPSS0.00148