Lucene search
K

6 matches found

Nuclei
Nuclei
added 2 days ago29 views

Relevanssi (A Better Search) <= 4.22.0 - Query Log Export

The Relevanssi Search plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check in all versions up to, and including, 4.22.0. This makes it possible for unauthenticated attackers to export the query log data. id: CVE-2024-1380 info: name: Relevanssi A...

5.3CVSS6.8AI score0.50192EPSS
Exploits0References3
Circl
Circl
added 2025/02/01 5:28 p.m.7 views

CVE-2024-1380

creationtimestamp| type| source ---|---|--- 2025-02-01 17:28:08+00:00| seen| Telegram/kHT30yXpPDepimDODFZdDEqhbXa4jYJbMvwyQAAdrf6ehA...

5.3CVSS4.8AI score0.50192EPSS
Exploits0
OSV
OSV
added 2024/03/13 4:15 p.m.5 views

CVE-2024-1380

The Relevanssi – A Better Search plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the relevanssiexportlogcheck function in all versions up to, and including, 4.22.0. This makes it possible for unauthenticated attackers to export the query log...

5.3CVSS7.3AI score0.50192EPSS
Exploits0References2
NVD
NVD
added 2024/03/13 4:15 p.m.31 views

CVE-2024-1380

The Relevanssi – A Better Search plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the relevanssiexportlogcheck function in all versions up to, and including, 4.22.0 Free and 2.25.0 Premium. This makes it possible for unauthenticated attackers ...

5.3CVSS5.1AI score0.50192EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/13 3:26 p.m.13 views

CVE-2024-1380 Relevanssi – A Better Search <= 4.22.0 (Free) and <= 2.25.0 (Premium) - Missing Authorization to Unauthenticated Query Log Export

The Relevanssi – A Better Search plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the relevanssiexportlogcheck function in all versions up to, and including, 4.22.0 Free and 2.25.0 Premium. This makes it possible for unauthenticated attackers ...

5.3CVSS6.7AI score0.50192EPSS
Exploits0References2
CVE
CVE
added 2024/03/13 3:26 p.m.76 views

CVE-2024-1380

The CVE pertains to Relevanssi – A Better Search plugin for WordPress (versions up to 4.22.0). A missing capability check in relevanssi_export_log_check() allows unauthenticated users to export query log data, enabling unauthorized data access. Documented impact is unauthorized access to query lo...

5.3CVSS6.7AI score0.50192EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder