Lucene search
+L

48 matches found

NVD
NVD
added 2024/06/09 12:15 p.m.23 views

CVE-2024-34435

Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3...

8.8CVSS0.00323EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/09 11:57 a.m.35 views

CVE-2024-34435 WordPress Aiomatic plugin <= 1.9.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3...

4.3CVSS0.00323EPSS
Exploits0References1
CVE
CVE
added 2024/06/09 11:57 a.m.62 views

CVE-2024-34435

CVE-2024-34435 affects CodeRevolution Aiomatic (Aiomatic) for WordPress, with a Missing Authorization vulnerability in Aiomatic versions up to and including 1.9.3. Root cause: missing authorization checks allow unauthorized access. Impact: potential unauthorized access to Aiomatic functionality; ...

8.8CVSS5AI score0.00323EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/09 11:57 a.m.18 views

CVE-2024-34435 WordPress Aiomatic plugin <= 1.9.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3...

4.3CVSS6.9AI score0.00323EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/09 12:0 a.m.7 views

WordPress plugin Aiomatic security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.7AI score0.00323EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2024/05/16 12:0 a.m.13 views

Aiomatic < 1.9.4 - Missing Authorization

Description The Aiomatic plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 1.9.3. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform an unauthorized action...

8.8CVSS6.7AI score0.00323EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/07 7:55 a.m.8 views

WordPress Aiomatic plugin <= 1.9.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Aiomatic versions = 1.9.3...

8.8CVSS7AI score0.00323EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 12:0 a.m.10 views

WordPress Aiomatic Plugin <= 1.9.3 is vulnerable to Broken Access Control

Software Aiomatic Type Plugin Vulnerable versions = 1.9.3 Fixed in 1.9.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-34435 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 5637a4c44c26 Credits Ananda Dhakal Patchstack Required...

8.8CVSS6.6AI score0.00323EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder