CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Missing Authorization vulnerability in metaphorcreations Post Duplicator post-duplicator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Duplicator: from n/a through = 2.35...

4.3CVSS7.2AI score0.00309EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:17 a.m.•5 views

CVE-2024-32569

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Metaphor Creations Ditty allows Stored XSS.This issue affects Ditty: from n/a through 3.1.31...

6.5CVSS5.2AI score0.00339EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:34 a.m.•3 views

CVE-2023-49835

Missing Authorization vulnerability in Metaphor Creations Post Duplicator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Duplicator: from n/a through 2.31...

4.3CVSS8.5AI score0.00401EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:0 a.m.•5 views

CVE-2023-47764

Missing Authorization vulnerability in metaphorcreations Ditty ditty-news-ticker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ditty: from n/a through = 3.1.24...

6.5CVSS7.3AI score0.00411EPSS

Exploits0References1

OSV•added 2025/01/24 6:15 p.m.•1 views

CVE-2025-24736

Missing Authorization vulnerability in Metaphor Creations Post Duplicator allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Post Duplicator: from n/a through 2.35...

4.3CVSS5.8AI score0.00309EPSS

Exploits0References1

NVD•added 2025/01/24 6:15 p.m.•13 views

CVE-2025-24736

4.3CVSS0.00309EPSS

Exploits0References1

Positive Technologies•added 2025/01/24 12:0 a.m.•3 views

PT-2025-5549 · Metaphor Creations · Post Duplicator

Name of the Vulnerable Software and Affected Versions: Metaphor Creations Post Duplicator versions n/a through 2.35 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For...

4.3CVSS6.9AI score0.00309EPSS

Exploits0References5

NVD•added 2024/12/09 1:15 p.m.•8 views

CVE-2023-47764

6.5CVSS0.00411EPSS

Exploits0References1

Vulnrichment•added 2024/12/09 11:30 a.m.•8 views

CVE-2023-47764 WordPress Ditty plugin <= 3.1.24 - Broken Access Control vulnerability

6.5CVSS7.3AI score0.00411EPSS

Exploits0References1

Vulnrichment•added 2024/12/09 11:30 a.m.•10 views

CVE-2023-49835 WordPress Post Duplicator plugin <= 2.31 - Broken Access Control vulnerability

4.3CVSS6.9AI score0.00401EPSS

Exploits0References1

Positive Technologies•added 2024/12/09 12:0 a.m.•3 views

PT-2024-13812 · Metaphor Creations · Post Duplicator

Name of the Vulnerable Software and Affected Versions: Metaphor Creations Post Duplicator versions through 2.31 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions...

4.3CVSS9.2AI score0.00401EPSS

Exploits0References5

NVD•added 2024/04/18 10:15 a.m.•10 views

CVE-2024-32569

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Metaphor Creations Ditty allows Stored XSS.This issue affects Ditty: from n/a through 3.1.31...

6.5CVSS6.4AI score0.00339EPSS

Exploits0References1

CVE•added 2024/04/18 9:48 a.m.•73 views

CVE-2024-32569

CVE-2024-32569 corresponds to the Ditty plugin for WordPress. The issue is a stored cross-site scripting (XSS) vulnerability in Ditty, arising during web-page generation, allowing stored XSS when input is not properly neutralized. Affected: Ditty versions up to 3.1.31 (per the CVE description). C...

6.5CVSS5.2AI score0.00339EPSS

Exploits0References1

Vulnrichment•added 2024/04/18 9:48 a.m.•22 views

CVE-2024-32569 WordPress Ditty plugin <= 3.1.31 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Metaphor Creations Ditty allows Stored XSS.This issue affects Ditty: from n/a through 3.1.31...

6.5CVSS6.7AI score0.00339EPSS

Exploits0References1

OSV•added 2023/05/03 2:15 p.m.•1 views

CVE-2023-23874

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Metaphor Creations Ditty plugin = 3.0.32 versions...

5.4CVSS6.7AI score

Exploits0References1

NVD•added 2023/05/03 2:15 p.m.•8 views

CVE-2023-23874

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Metaphor Creations Ditty plugin = 3.0.32 versions...

6.5CVSS5.8AI score0.00387EPSS

Exploits0References1