4 matches found
CVE-2024-2931
The WPFront User Role Editor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.2.1.11184 via the wpfrontuserroleeditorassignrolesuserautocomplete AJAX action. This makes it possible for authenticated attackers, with subscriber-level acces...
CVE-2024-2931
creationtimestamp| type| source ---|---|--- 2025-03-04 22:33:25+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6452...
CVE-2024-2931
CVE-2024-2931 affects the WordPress plugin WPFront User Role Editor. The vulnerability enables Sensitive Information Exposure via the wpfront_user_role_editor_assign_roles_user_autocomplete AJAX action. It allows authenticated attackers with subscriber-level access and above to retrieve the list ...
WordPress WPFront User Role Editor Plugin <= 3.2.1.11184 is vulnerable to Sensitive Data Exposure
Software WPFront User Role Editor Type Plugin Vulnerable versions = 3.2.1.11184 Fixed in 4.1.0 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2931 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 5c39a15c1361 Credits AmrAwad...