CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-40623

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00247EPSS

Exploits0References1

OSV•added 2024/11/01 3:15 p.m.•0 views

CVE-2024-43974

Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2...

9.8CVSS5.8AI score

Exploits0References1

NVD•added 2024/11/01 3:15 p.m.•7 views

CVE-2024-43974

Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2...

9.8CVSS0.00247EPSS

Exploits0References1

Cvelist•added 2024/11/01 2:17 p.m.•15 views

CVE-2024-43974 WordPress ReviveNews theme <= 1.0.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2...

6.5CVSS0.00247EPSS

Exploits0References1

CVE•added 2024/11/01 2:17 p.m.•47 views

CVE-2024-43974

CVE-2024-43974 is a Missing Authorization (Broken Access Control) vulnerability in CozyThemes ReviveNews for WordPress, affecting ReviveNews versions up to and including 1.0.2. The issue allows accessing functionality not properly constrained by ACLs, enabling unauthorized actors to perform actio...

9.8CVSS7.2AI score0.00247EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/11/01 2:17 p.m.•9 views

CVE-2024-43974 WordPress ReviveNews theme <= 1.0.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2...

6.5CVSS6.9AI score0.00247EPSS

Exploits0References1

CNNVD•added 2024/11/01 12:0 a.m.•1 views

WordPress plugin ReviveNews 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.8CVSS6.6AI score0.00247EPSS

Exploits0References1

Positive Technologies•added 2024/11/01 12:0 a.m.•2 views

PT-2024-30837 · Unknown · Revivenews

Name of the Vulnerable Software and Affected Versions: ReviveNews versions 1.0.2 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows accessing functionality not properly constrained by Access Control Lists ACLs. This means that certain features or...

9.8CVSS6.5AI score0.00247EPSS

Exploits0References4

Patchstack•added 2024/08/28 9:10 a.m.•2 views

WordPress ReviveNews theme <= 1.0.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Fariq Fadillah Gusti Insani Patchstack Alliance in WordPress Theme ReviveNews versions = 1.0.2...

9.8CVSS7AI score0.00247EPSS

Exploits0Affected Software1

Patchstack•added 2024/08/28 12:0 a.m.•7 views

WordPress ReviveNews Theme <= 1.0.2 is vulnerable to Broken Access Control

Software ReviveNews Type Theme Vulnerable versions = 1.0.2 Fixed in 1.0.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43974 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 47fb9a9aedf3 Credits Fariq Fadillah Gusti Insani...

9.8CVSS6.3AI score0.00247EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by