Lucene search
K

4 matches found

Circl
Circl
added 2024/08/20 4:35 a.m.7 views

CVE-2024-5940

creationtimestamp| type| source ---|---|--- 2024-08-20 04:35:01+00:00| seen| https://t.me/cvedetector/3591...

6.5CVSS4.8AI score0.00466EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/20 2:3 a.m.15 views

CVE-2024-5940 GiveWP – Donation Plugin and Fundraising Platform <= 3.13.0 - Missing Authorization to Unauthenticated Event Settings Update

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'handlerequest' function in all versions up to, and including, 3.13.0. This makes it possible for unauthenticated attackers to edi...

6.5CVSS6.7AI score0.00466EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/08/20 2:3 a.m.20 views

CVE-2024-5940 GiveWP – Donation Plugin and Fundraising Platform <= 3.13.0 - Missing Authorization to Unauthenticated Event Settings Update

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'handlerequest' function in all versions up to, and including, 3.13.0. This makes it possible for unauthenticated attackers to edi...

6.5CVSS0.00466EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/08/20 12:0 a.m.12 views

WordPress GiveWP Plugin <= 3.13.0 is vulnerable to Broken Access Control

Software GiveWP Type Plugin Vulnerable versions = 3.13.0 Fixed in 3.14.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5940 Patch priority Medium CVSS severity Medium 6.5 Developer Liquid Web / StellarWP PSID c733c510d1d3 Credits villu164 Required...

6.5CVSS6.5AI score0.00466EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder