CVE-2024-31369

The CVE-2024-31369 entry describes a CSRF vulnerability in the PenciDesign Soledad WordPress theme, affecting Soledad versions from n/a up to 8.4.2. The provided metrics (CVSS 3.1) indicate a base score of 5.4 (Medium) with impact on integrity/availability at LOW, confidentiality not impacted, in...

CVE-2024-31368

CVE-2024-31368 is a Missing Authorization vulnerability in the PenciDesign Soledad WordPress theme, affecting Soledad builds up to 8.4.2 (and noted as affected from n/a to 8.4.2 in the initial document). Connected sources confirm this is a real issue with the Soledad theme, and Red Hat/Wordfence ...

CVE-2024-31367 WordPress Soledad theme <= 8.4.2 - Authenticated Broken Access Control vulnerability

Missing Authorization vulnerability in PenciDesign Soledad.This issue affects Soledad: from n/a through 8.4.2...

CVE-2024-31367

Technical details for CVE-2024-31367 are not provided in the supplied documents. Current records only note a missing authorization vulnerability affecting PenciDesign Soledad up to version 8.4.2; monitor for official updates, patches, and affected releases.

PT-2024-24013 · Pencidesign · Pencidesign Soledad

Name of the Vulnerable Software and Affected Versions: PenciDesign Soledad versions through 8.4.2 Description: A Missing Authorization issue affects the software. Recommendations: For versions through 8.4.2, update to a version newer than 8.4.2 to resolve the issue...

PT-2024-24012 · Pencidesign · Soledad

Name of the Vulnerable Software and Affected Versions: Soledad versions through 8.4.2 Description: The issue is related to a Missing Authorization vulnerability in PenciDesign Soledad. Recommendations: For Soledad versions through 8.4.2, at the moment, there is no information about a newer versio...

PT-2024-24014 · Pencidesign · Pencidesign Soledad

Name of the Vulnerable Software and Affected Versions: PenciDesign Soledad versions through 8.4.2 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web application...

CVE-2023-49826

Deserialization of Untrusted Data vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

Deserialization of untrusted data

Deserialization of Untrusted Data vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

CVE-2023-49825

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

CVE-2023-49825

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...

CVE-2023-49827

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme allows Reflected XSS.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from...