Lucene search

[email protected]NVD:CVE-2024-28004

HistoryMar 28, 2024 - 6:15 a.m.

CVE-2024-28004

2024-03-2806:15:11

CWE-862

[email protected]

web.nvd.nist.gov

cve-2024-28004

extendthemes colibri page builder

missing authorization

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

0.0004 Low

EPSS

Percentile

9.0%

JSON

Missing Authorization vulnerability in ExtendThemes Colibri Page Builder.This issue affects Colibri Page Builder: from n/a through 1.0.248.

References

patchstack.com/database/vulnerability/colibri-page-builder/wordpress-colibri-page-builder-plugin-1-0-248-broken-access-control-vulnerability?_s_id=cve

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

0.0004 Low

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2024-28004

wpvulndb1 cvelist1 cve1