10 matches found
CVE-2024-1368
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368 Page Duplicator <= 0.1.1 - Missing Authorization to Unauthenticated Post/Page Duplication
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368 Page Duplicator <= 0.1.1 - Missing Authorization to Unauthenticated Post/Page Duplication
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368
The CVE-2024-1368 issue affects the Page Duplicator plugin for WordPress. A missing capability check in duplicate_dat_page() across all versions up to 0.1.1 allows unauthenticated attackers to duplicate arbitrary posts and pages, enabling unauthorized data duplication/modification. This is docume...
PT-2024-17980 · WordPress · Page Duplicator
Name of the Vulnerable Software and Affected Versions: Page Duplicator plugin for WordPress versions up to, and including, 0.1.1 Description: The issue is related to unauthorized modification of data due to a missing capability check on the duplicate dat page function. This allows unauthenticated...
WordPress Plugin Page Duplicator Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
WordPress Page Duplicator Plugin <= 0.1.1 is vulnerable to Broken Access Control
Software Page Duplicator Type Plugin Vulnerable versions = 0.1.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1368 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 7dc90907c1cd Credits Lucio Sá Required privilege...
Page Duplicator <= 0.1.1 - Missing Authorization to Unauthenticated Post/Page Duplication
Description The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts...