Lucene search
K

4 matches found

Circl
Circl
added 2024/09/04 10:13 a.m.8 views

CVE-2024-8121

creationtimestamp| type| source ---|---|--- 2024-09-04 10:13:13+00:00| seen| https://t.me/cvedetector/4772...

5.4CVSS4.8AI score0.00323EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/04 6:49 a.m.30 views

CVE-2024-8121 The Ultimate WordPress Toolkit – WP Extended <= 3.0.8 - Missing Authorization to Admin Username Change

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification of user names due to a missing capability check on the wpextchangeadminname function in all versions up to, and including, 3.0.8. This makes it possible for authenticated attackers, wi...

5.4CVSS0.00323EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/09/04 6:49 a.m.17 views

CVE-2024-8121 The Ultimate WordPress Toolkit – WP Extended <= 3.0.8 - Missing Authorization to Admin Username Change

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification of user names due to a missing capability check on the wpextchangeadminname function in all versions up to, and including, 3.0.8. This makes it possible for authenticated attackers, wi...

5.4CVSS6.5AI score0.00323EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/09/04 12:0 a.m.17 views

WordPress The Ultimate WordPress Toolkit – WP Extended Plugin <= 3.0.8 is vulnerable to Broken Access Control

Software The Ultimate WordPress Toolkit – WP Extended Type Plugin Vulnerable versions = 3.0.8 Fixed in 3.0.9 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-8121 Patch priority Low CVSS severity Low 5.4 Developer WP Extended PSID 13565964e4a5 Credits Marco...

5.4CVSS9.4AI score0.00323EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder