CVE-2024-1400

creationtimestamp| type| source ---|---|--- 2024-03-11 23:27:00+00:00| seen| https://t.me/ctinow/205131 2024-03-11 23:27:11+00:00| seen| https://t.me/ctinow/205139...

CVE-2024-1400

The Mollie Forms plugin for WordPress is vulnerable to unauthorized post or page duplication due to a missing capability check on the duplicateForm function in all versions up to, and including, 2.6.3. This makes it possible for authenticated attackers, with subscriber access or higher, to...

CVE-2024-1400

CVE-2024-1400 affects the Mollie Forms WordPress plugin. The vulnerability is a missing capability check in the duplicateForm function across versions up to 2.6.3, enabling authenticated attackers with subscriber access or higher to duplicate arbitrary posts/pages. The Wordfence data for this CVE...

CVE-2024-1400 Mollie Forms <= 2.6.3 - Missing Authorization to Arbitrary Post Duplication

The Mollie Forms plugin for WordPress is vulnerable to unauthorized post or page duplication due to a missing capability check on the duplicateForm function in all versions up to, and including, 2.6.3. This makes it possible for authenticated attackers, with subscriber access or higher, to...

WordPress Mollie Forms Plugin <= 2.6.3 is vulnerable to Broken Access Control

Software Mollie Forms Type Plugin Vulnerable versions = 2.6.3 Fixed in 2.6.4 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1400 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 216cfadafbb9 Credits Lucio Sá Required privilege...