PT-2024-23886 · Unknown · Bricksforge

Name of the Vulnerable Software and Affected Versions: Bricksforge versions n/a through 2.0.17 Description: The issue is related to a Missing Authorization vulnerability in Bricksforge. This vulnerability affects Bricksforge versions from n/a through 2.0.17. Recommendations: For versions n/a...

Bricksforge < 2.1.1 - Missing Authorization to Unauthenticated Arbitrary Email Sending

Description The Bricksforge plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the a function in versions up to, and including, 2.0.17. This makes it possible for unauthenticated attackers to send arbitrary emails...

Bricksforge < 2.1.1 - Missing Authorization to Unauthenticated WordPress Settings Update

Description The Bricksforge plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 2.0.17. This makes it possible for unauthenticated attackers to update arbitrary WordPress settings...

CVE-2024-31242

Missing Authorization vulnerability in Bricksforge.This issue affects Bricksforge: from n/a through 2.0.17...

CVE-2024-31242

Bricksforge is affected by CVE-2024-31242: Missing Authorization allows unauthenticated email sending in Bricksforge plugin versions up to and including 2.0.17. The CVSS 3.1 score is 5.3 (Network access, low confidentiality/ integrity impact, no availability impact; no user interaction required)....

CVE-2024-31242 WordPress Bricksforge plugin <= 2.0.17 - Unauthenticated Arbitrary Email Sending vulnerability

Missing Authorization vulnerability in Bricksforge.This issue affects Bricksforge: from n/a through 2.0.17...

CVE-2024-31242 WordPress Bricksforge plugin <= 2.0.17 - Unauthenticated Arbitrary Email Sending vulnerability

Missing Authorization vulnerability in Bricksforge.This issue affects Bricksforge: from n/a through 2.0.17...

WordPress Plugin Bricksforge 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.WordPress...

PT-2024-23884 · Unknown · Bricksforge

Name of the Vulnerable Software and Affected Versions: Bricksforge versions 2.0.17 and earlier Description: A Missing Authorization issue has been identified. This issue affects the authorization mechanism, potentially allowing unauthorized access. Recommendations: For versions 2.0.17 and earlier...

WordPress Bricksforge plugin <= 2.0.17 - Unauthenticated Arbitrary WordPress Settings Change vulnerability

Unauthenticated Arbitrary WordPress Settings Change vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Bricksforge versions = 2.0.17...

WordPress Bricksforge plugin <= 2.0.17 - Unauthenticated Arbitrary WordPress Setting Deletion vulnerability

Unauthenticated Arbitrary WordPress Setting Deletion vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Bricksforge versions = 2.0.17...

WordPress Bricksforge plugin <= 2.0.17 - Unauthenticated Arbitrary Email Sending vulnerability

Unauthenticated Arbitrary Email Sending vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Bricksforge versions = 2.0.17...

WordPress Bricksforge Plugin <= 2.0.17 is vulnerable to Settings Change

Software Bricksforge Type Plugin Vulnerable versions = 2.0.17 Fixed in 2.1.1 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2024-31243 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 5546b5d0d458 Credits Dave Jong Patchstack Required...

WordPress Bricksforge Plugin <= 2.0.17 is vulnerable to Settings Change

Software Bricksforge Type Plugin Vulnerable versions = 2.0.17 Fixed in 2.1.1 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2024-31244 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 14424e64b823 Credits Dave Jong Patchstack Required...

WordPress Bricksforge Plugin <= 2.0.17 is vulnerable to Broken Access Control

Software Bricksforge Type Plugin Vulnerable versions = 2.0.17 Fixed in 2.1.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-31242 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 33cad34804b3 Credits Dave Jong Patchstack Required...