Lucene search
K

5 matches found

Circl
Circl
added 2024/08/01 7:3 a.m.9 views

CVE-2024-6698

creationtimestamp| type| source ---|---|--- 2024-08-01 07:03:43+00:00| seen| https://t.me/cvedetector/2208...

8.8CVSS4.8AI score0.00431EPSS
Exploits0References1
OSV
OSV
added 2024/08/01 4:15 a.m.13 views

CVE-2024-6698

The FundEngine plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.7.0. This is due to the plugin not properly verifying user meta updated through the updateusermeta function. This makes it possible for authenticated attackers, with subscriber-level...

8.8CVSS5.7AI score0.00431EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/01 3:29 a.m.19 views

CVE-2024-6698 FundEngine – Donation and Crowdfunding Platform <= 1.7.0 - Authenticated (Subscriber+) Privilege Escalation

The FundEngine plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.7.0. This is due to the plugin not properly verifying user meta updated through the updateusermeta function. This makes it possible for authenticated attackers, with subscriber-level...

8.8CVSS8.8AI score0.00431EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/01 3:29 a.m.35 views

CVE-2024-6698 FundEngine – Donation and Crowdfunding Platform <= 1.7.0 - Authenticated (Subscriber+) Privilege Escalation

The FundEngine plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.7.0. This is due to the plugin not properly verifying user meta updated through the updateusermeta function. This makes it possible for authenticated attackers, with subscriber-level...

8.8CVSS0.00431EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/08/01 12:0 a.m.24 views

WordPress WP Fundraising Donation and Crowdfunding Platform Plugin <= 1.7.0 is vulnerable to Privilege Escalation

Software WP Fundraising Donation and Crowdfunding Platform Type Plugin Vulnerable versions = 1.7.0 Fixed in 1.7.1 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2024-6698 Patch priority High CVSS severity High 8.8 Developer Claim ownership...

8.8CVSS6.6AI score0.00431EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder