Lucene search
K

4 matches found

CVE
CVE
added 2025/07/02 3:47 a.m.33 views

CVE-2025-4654

CVE-2025-4654 – WordPress Soumettre.fr plugin : The vulnerability arises from improper authorization checks in the make_signature function, affecting all versions up to 2.1.5. This allows unauthenticated attackers to create, edit, or delete Soumettre posts, but only on installations where the sou...

3.7CVSS6.8AI score0.00226EPSS
Exploits0References2
NVD
NVD
added 2024/10/01 8:15 a.m.14 views

CVE-2024-8675

The Soumettre.fr plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the soumettredisconnectgateway function in all versions up to, and including, 2.1.3. This makes it possible for authenticated attackers, with Subscriber-level access and...

4.3CVSS0.00337EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/10/01 12:0 a.m.5 views

WordPress plugin Soumettre.fr 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS6.5AI score0.00337EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/01 12:0 a.m.8 views

PT-2024-39169 · WordPress · Soumettre.Fr

Name of the Vulnerable Software and Affected Versions: Soumettre.fr plugin for WordPress versions up to, and including, 2.1.2 Description: The issue allows authenticated attackers with Subscriber-level access and above to modify data without authorization due to a missing capability check on the...

4.3CVSS7AI score0.00337EPSS
Exploits0References7
Rows per page
Query Builder