10 matches found
CVE-2024-1368
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368
The CVE-2024-1368 issue affects the Page Duplicator plugin for WordPress. A missing capability check in duplicate_dat_page() across all versions up to 0.1.1 allows unauthenticated attackers to duplicate arbitrary posts and pages, enabling unauthorized data duplication/modification. This is docume...
CVE-2024-1368 Page Duplicator <= 0.1.1 - Missing Authorization to Unauthenticated Post/Page Duplication
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
CVE-2024-1368 Page Duplicator <= 0.1.1 - Missing Authorization to Unauthenticated Post/Page Duplication
The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts and pages...
WordPress Page Duplicator Plugin <= 0.1.1 is vulnerable to Broken Access Control
Software Page Duplicator Type Plugin Vulnerable versions = 0.1.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1368 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 7dc90907c1cd Credits Lucio Sá Required privilege...
WordPress Plugin Page Duplicator Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
PT-2024-17980 · WordPress · Page Duplicator
Name of the Vulnerable Software and Affected Versions: Page Duplicator plugin for WordPress versions up to, and including, 0.1.1 Description: The issue is related to unauthorized modification of data due to a missing capability check on the duplicate dat page function. This allows unauthenticated...
Page Duplicator <= 0.1.1 - Missing Authorization to Unauthenticated Post/Page Duplication
Description The Page Duplicator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the duplicatedatpage function in all versions up to, and including, 0.1.1. This makes it possible for unauthenticated attackers to duplicate arbitrary posts...