CVE-2024-54336

Authentication Bypass Using an Alternate Path or Channel vulnerability in Projectopia Projectopia projectopia-core allows Authentication Bypass.This issue affects Projectopia: from n/a through = 5.1.7...

CVE-2024-54336 WordPress Projectopia plugin <= 5.1.7 - Account Takeover vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in Projectopia Projectopia allows Authentication Bypass.This issue affects Projectopia: from n/a through 5.1.7...

CVE-2024-54336 WordPress Projectopia plugin <= 5.1.7 - Account Takeover vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in Projectopia Projectopia projectopia-core allows Authentication Bypass.This issue affects Projectopia: from n/a through = 5.1.7...

CVE-2024-54336

CVE-2024-54336 is an Authentication Bypass / Privilege Escalation issue in Projectopia (WordPress project management plugin). The incident, described as Missing Authorization to Privilege Escalation via pto_reset_password(), affects Projectopia versions up to and including 5.1.7 (the vulnerable r...

WordPress plugin Projectopia 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

PT-2024-36220 · Unknown · Projectopia

Name of the Vulnerable Software and Affected Versions: Projectopia versions through 5.1.7 Description: The issue is related to an Authentication Bypass Using an Alternate Path or Channel vulnerability. This vulnerability allows attackers to bypass authentication using an alternate path. There is ...

WordPress Projectopia plugin <= 5.1.7 - Account Takeover vulnerability

Account Takeover vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Projectopia versions = 5.1.7...

WordPress Projectopia Plugin <= 5.1.4 is vulnerable to Cross Site Scripting (XSS)

Software Projectopia Type Plugin Vulnerable versions = 5.1.4 Fixed in 5.1.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a7e5ac668596 Credits Rafie Muhammad Patchstack Required...

WordPress Projectopia – WordPress Project Management Plugin plugin < 5.0.7 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Projectopia – WordPress Project Management Plugin plugin versions 5.0.7. Solution Update the WordPress Projectopia – WordPress Project Management Plugin plugin to the latest available version at least 5.0.7...

WordPress Projectopia – WordPress Project Management Plugin plugin < 5.0.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Projectopia – WordPress Project Management Plugin plugin versions 5.0.7. Solution Update the WordPress Projectopia – WordPress Project Management Plugin plugin to the latest available version at least...