Lucene search
K

28 matches found

NVD
NVD
added 2024/06/10 8:15 a.m.25 views

CVE-2024-23524

Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a through 2.0.30...

8.8CVSS0.00307EPSS
Exploits0References1
OSV
OSV
added 2024/06/10 8:15 a.m.3 views

CVE-2024-23524

Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a through 2.0.30...

8.8CVSS5.8AI score0.00307EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/10 8:3 a.m.15 views

CVE-2024-23524 WordPress PilotPress plugin <= 2.0.30 - Broken Access Control vulnerability

Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a through 2.0.30...

5.3CVSS6.9AI score0.00307EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/10 8:3 a.m.24 views

CVE-2024-23524 WordPress PilotPress plugin <= 2.0.30 - Broken Access Control vulnerability

Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a through 2.0.30...

5.3CVSS0.00307EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/10 12:0 a.m.4 views

PT-2024-19926 · Unknown · Pilotpress

Name of the Vulnerable Software and Affected Versions: PilotPress versions n/a through 2.0.30 Description: The issue is related to a Missing Authorization vulnerability in PilotPress. This vulnerability affects PilotPress from version n/a through 2.0.30. Recommendations: For versions n/a through...

8.8CVSS9.3AI score0.00307EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/06/10 12:0 a.m.3 views

WordPress plugin PilotPress security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.7AI score0.00307EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2024/02/05 12:0 a.m.10 views

PilotPress < 2.0.31 - Subscriber+ Report Access & DB Transients Purging

Description The plugin is vulnerable to unauthorized access to data and loss of data due to a missing capability check on multiple AJAX functions, allowing authenticated attackers, with subscriber access and above, to view reports and purge database transients...

9.3AI score0.00307EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/01/31 12:0 a.m.7 views

WordPress PilotPress Plugin <= 2.0.30 is vulnerable to Broken Access Control

Software PilotPress Type Plugin Vulnerable versions = 2.0.30 Fixed in 2.0.31 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-23524 Patch priority Medium CVSS severity Medium 5.3 Developer Claim ownership PSID 0d381f1b6d73 Credits Nguyen Xuan Chien Required...

8.8CVSS6.5AI score0.00307EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder