3 matches found
GiveWP WordPress Plugin Vulnerability Puts 100,000+ Websites at Risk
A maximum-severity security flaw has been disclosed in the WordPress GiveWP donation and fundraising plugin that exposes more than 100,000 websites to remote code execution attacks. The flaw, tracked as CVE-2024-5932 CVSS score: 10.0, impacts all versions of the plugin prior to version 3.14.2,...
CVE-2024-7094
creationtimestamp| type| source ---|---|--- 2024-08-13 06:13:47+00:00| seen| https://t.me/cvedetector/2945 2024-08-18 09:30:38+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/8290 2024-08-30 11:11:33+00:00| published-proof-of-concept| https://t.me/bizonechannel/1386...
WordPress JS Help Desk – Best Help Desk & Support Plugin Plugin <= 2.8.6 is vulnerable to Remote Code Execution (RCE)
Software JS Help Desk – Best Help Desk & Support Plugin Type Plugin Vulnerable versions = 2.8.6 Fixed in 2.8.7 OWASP Top 10 A1: Injection Classification Remote Code Execution RCE CVE CVE-2024-7094 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 31d4d7c86bb1 Credits Conno...