5 matches found
CVE-2024-8853
creationtimestamp| type| source ---|---|--- 2024-09-20 10:33:29+00:00| seen| https://t.me/cvedetector/6100...
CVE-2024-8853
The Webo-facto plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.40 due to insufficient restriction on the 'doSsoAuthentification' function. This makes it possible for unauthenticated attackers to make themselves administrators by registering with a...
CVE-2024-8853 Webo-facto <= 1.40 - Unauthenticated Privilege Escalation
The Webo-facto plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.40 due to insufficient restriction on the 'doSsoAuthentification' function. This makes it possible for unauthenticated attackers to make themselves administrators by registering with a...
CVE-2024-8853 Webo-facto <= 1.40 - Unauthenticated Privilege Escalation
The Webo-facto plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.40 due to insufficient restriction on the 'doSsoAuthentification' function. This makes it possible for unauthenticated attackers to make themselves administrators by registering with a...
WordPress Webo-facto Plugin <= 1.40 is vulnerable to Privilege Escalation
Software Webo-facto Type Plugin Vulnerable versions = 1.40 Fixed in 1.41 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2024-8853 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 15efb92b2d14 Credits István Márton...