4 matches found
CVE-2024-1092
creationtimestamp| type| source ---|---|--- 2024-02-25 15:16:20+00:00| seen| https://t.me/ctinow/192904...
CVE-2024-1092
The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the feedzy dashboard in all versions up to, and including, 4.4.1. This makes it possible for...
CVE-2024-1092 RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator <= 4.4.1 - Missing Authorization
The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the feedzy dashboard in all versions up to, and including, 4.4.1. This makes it possible for...
CVE-2024-1092
CVE-2024-1092 affects the RSS Aggregator by Feedzy plugin for WordPress (versions up to 4.4.1). The issue is broken access control due to a missing capability check on the feedzy dashboard, allowing authenticated users with contributor access or higher to create, edit, or delete feed categories. ...