Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:25 a.m.17 views

CVE-2024-0370

The Views for WPForms – Display & Edit WPForms Entries on your site frontend plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'saveview' function in all versions up to, and including, 3.2.2. This makes it possible for authenticated...

4.3CVSS6.4AI score0.00428EPSS
Exploits0References1
OSV
OSV
added 2024/02/05 10:16 p.m.5 views

CVE-2024-0370

The Views for WPForms – Display & Edit WPForms Entries on your site frontend plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'saveview' function in all versions up to, and including, 3.2.2. This makes it possible for authenticated...

4.3CVSS5.7AI score0.00428EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/05 9:21 p.m.3 views

CVE-2024-0370 Views for WPForms <= 3.2.2 - Missing Authorization via save_view

The Views for WPForms – Display & Edit WPForms Entries on your site frontend plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'saveview' function in all versions up to, and including, 3.2.2. This makes it possible for authenticated...

4.3CVSS6.7AI score0.00428EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/01/25 12:0 a.m.12 views

WordPress Views for WPForms Plugin <= 3.2.2 is vulnerable to Broken Access Control

Software Views for WPForms Type Plugin Vulnerable versions = 3.2.2 Fixed in 3.2.3 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-0370 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2bf8391974fc Credits Francesco Carlucci Required...

4.3CVSS6.9AI score0.00428EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder