3 matches found
CVE-2024-13887
creationtimestamp| type| source ---|---|--- 2025-03-13 03:44:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7394 2025-03-13 07:15:17+00:00| seen| https://t.me/cvedetector/20186...
CVE-2024-13887 Business Directory Plugin - Easy Listing Directories for WordPress <= 6.4.14 - Insecure Direct Object Reference to Listing Arbitrary Image Addition
The Business Directory Plugin – Easy Listing Directories for WordPress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.4.14 via the 'ajaxlistingsubmitimageupload' function due to missing validation on a user controlled key. This makes...
CVE-2024-13887
CVE-2024-13887 concerns the WordPress plugin Business Directory Plugin – Easy Listing Directories for WordPress (versions