17 matches found
EUVD-2024-34162
Malicious code in bioql PyPI...
EUVD-2024-17575
Malicious code in bioql PyPI...
EUVD-2024-30500
Malicious code in bioql PyPI...
CVE-2024-32713
Missing Authorization vulnerability in AutoWriter AI Post Generator | AutoWriter.This issue affects AI Post Generator | AutoWriter: from n/a through 3.3...
CVE-2024-11709
The AI Post Generator | AutoWriter plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the aipostgeneratordeletePost AJAX action in all versions up to, and including, 3.5. This makes it possible for authenticated attackers, with...
CVE-2024-11709
CVE-2024-11709 concerns the WordPress plugin AI Post Generator | AutoWriter. The vulnerability stems from a missing capability check on the ai_post_generator_delete_Post AJAX action, affecting all versions up to 3.5. The flaw enables authenticated attackers with Contributor-level access or higher...
CVE-2024-11709 AI Post Generator | AutoWriter <= 3.5 - Missing Authorization to Authenticated (Contributor+) Post/Page Deletion
The AI Post Generator | AutoWriter plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the aipostgeneratordeletePost AJAX action in all versions up to, and including, 3.5. This makes it possible for authenticated attackers, with...
CVE-2024-11709 AI Post Generator | AutoWriter <= 3.5 - Missing Authorization to Authenticated (Contributor+) Post/Page Deletion
The AI Post Generator | AutoWriter plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the aipostgeneratordeletePost AJAX action in all versions up to, and including, 3.5. This makes it possible for authenticated attackers, with...
WordPress AI Post Generator | AutoWriter plugin <= 3.5 - Missing Authorization to Authenticated (Contributor+) Post/Page Deletion vulnerability
Missing Authorization to Authenticated Contributor+ Post/Page Deletion vulnerability discovered by Brian Sans-Souci liardom in WordPress Plugin AI Post Generator | AutoWriter versions = 3.5...
CVE-2024-32713
CVE-2024-32713 corresponds to a Broken Access Control (Missing Authorization) vulnerability in the WordPress AutoWriter AI Post Generator plugin (AutoWriter) versions n/a through 3.3. The issue stems from insufficient authorization checks, allowing unauthorized access to the AI Post Generator fun...
WordPress plugin AI Post Generator | AutoWriter security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress AI Post Generator | AutoWriter Plugin <= 3.3 is vulnerable to Broken Access Control
Software AI Post Generator | AutoWriter Type Plugin Vulnerable versions = 3.3 Fixed in 3.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32713 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 1f7f2444d49e Credits LVT-tholv2k Requir...
CVE-2024-1850
The AI Post Generator | AutoWriter plugin for WordPress is vulnerable to unauthorized access, modification or deletion of posts due to a missing capability check on functions hooked by AJAX actions in all versions up to, and including, 3.3. This makes it possible for authenticated attackers, with...
CVE-2024-1850 AI Post Generator | AutoWriter <= 3.3 - Missing Authorization
The AI Post Generator | AutoWriter plugin for WordPress is vulnerable to unauthorized access, modification or deletion of posts due to a missing capability check on functions hooked by AJAX actions in all versions up to, and including, 3.3. This makes it possible for authenticated attackers, with...
CVE-2024-1850 AI Post Generator | AutoWriter <= 3.3 - Missing Authorization
The AI Post Generator | AutoWriter plugin for WordPress is vulnerable to unauthorized access, modification or deletion of posts due to a missing capability check on functions hooked by AJAX actions in all versions up to, and including, 3.3. This makes it possible for authenticated attackers, with...
WordPress Plugin AI Post Generator | AutoWriter 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
AI Post Generator < 3.4 - Subscriber+ Posts Read/Creation/Deletion
Description The plugin is vulnerable to unauthorized access, modification or deletion of posts due to a missing capability check on functions hooked by AJAX actions. This makes it possible for authenticated attackers, with subscriber access or higher, to view all posts generated with this plugin...