Lucene search
K

4 matches found

Circl
Circl
added 2024/04/11 6:10 a.m.5 views

CVE-2024-1984

creationtimestamp| type| source ---|---|--- 2024-04-11 06:10:41+00:00| seen| https://t.me/arpsyndicate/4451...

5.3CVSS8.6AI score0.00523EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/09 6:59 p.m.18 views

CVE-2024-1984 Graphene <= 2.9.2 - Missing Authorization

The Graphene theme for WordPress is vulnerable to unauthorized access of data via meta tag in all versions up to, and including, 2.9.2. This makes it possible for unauthenticated individuals to obtain post contents of password protected posts via the generated source...

5.3CVSS5.5AI score0.00523EPSS
Exploits0References2
CVE
CVE
added 2024/04/09 6:59 p.m.70 views

CVE-2024-1984

CVE-2024-1984 affects the WordPress Graphene theme (versions ≤ 2.9.2). The issue allows unauthenticated users to access post contents of password-protected posts via a meta tag in the page source, indicating a missing authorization check (low-severity info exposure). Reported by Krzysztof Zając a...

5.3CVSS6.2AI score0.00523EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/03/20 12:0 a.m.11 views

WordPress Graphene Theme <= 2.9 is vulnerable to Broken Access Control

Software Graphene Type Theme Vulnerable versions = 2.9 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1984 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID dadc68068747 Credits Krzysztof Zając Required privilege...

5.3CVSS6.9AI score0.00523EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder