Lucene search

CVE-2024-5856

🗓️ 09 Jul 2024 09:08:15Reported by [email protected]Type

The WordPress Comment Images Reloaded plugin allows authenticated attackers to delete arbitrary media attachment

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2024-5856	9 Jul 202409:15	–	cve
Vulnrichment	CVE-2024-5856 Comment Images Reloaded <= 2.2.1 - Authenticated (Subscriber+) Arbitrary Media Deletion	9 Jul 202408:33	–	vulnrichment
Patchstack	WordPress Comment Images Reloaded Plugin <= 2.2.1 is vulnerable to Broken Access Control	9 Jul 202400:00	–	patchstack
RedhatCVE	CVE-2024-5856	23 May 202508:27	–	redhatcve
Cvelist	CVE-2024-5856 Comment Images Reloaded <= 2.2.1 - Authenticated (Subscriber+) Arbitrary Media Deletion	9 Jul 202408:33	–	cvelist
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 8, 2024 to July 14, 2024)	18 Jul 202415:33	–	wordfence

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/comment-images-reloaded/trunk/functions/delete-comment.php
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/4f2dc3e7-1e10-4547-8469-726c6747465d

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jul 2024 09:15Current

CVSS34.3

EPSS0.00203