Lucene search
K

6 matches found

Circl
Circl
added 2024/02/07 12:21 p.m.7 views

CVE-2024-1110

creationtimestamp| type| source ---|---|--- 2024-02-07 12:21:57+00:00| seen| https://t.me/ctinow/180658 2024-03-01 17:17:17+00:00| seen| https://t.me/ctinow/197804...

5.3CVSS6.7AI score0.00524EPSS
Exploits0References2
NVD
NVD
added 2024/02/07 11:15 a.m.29 views

CVE-2024-1110

The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init function in all versions up to, and including, 4.0.11. This makes it possible for unauthenticated attackers to import the plugin's settings...

5.3CVSS5.1AI score0.00524EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/02/07 11:2 a.m.10 views

CVE-2024-1110 Podlove Podcast Publisher <= 4.0.11 - Missing Authorization to Settings Import

The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init function in all versions up to, and including, 4.0.11. This makes it possible for unauthenticated attackers to import the plugin's settings...

5.3CVSS6.7AI score0.00524EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/07 11:2 a.m.34 views

CVE-2024-1110 Podlove Podcast Publisher <= 4.0.11 - Missing Authorization to Settings Import

The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init function in all versions up to, and including, 4.0.11. This makes it possible for unauthenticated attackers to import the plugin's settings...

5.3CVSS5.3AI score0.00524EPSS
Exploits0References3
CVE
CVE
added 2024/02/07 11:2 a.m.203 views

CVE-2024-1110

The Podlove Podcast Publisher plugin for WordPress (up to and including version 4.0.11) is vulnerable to unauthorized data modification due to a missing capability check on init(). This enables unauthenticated attackers to import or modify the plugin’s settings. The issue is triggered across all ...

5.3CVSS5.4AI score0.00524EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/02/07 12:0 a.m.9 views

WordPress Podlove Podcast Publisher Plugin <= 4.0.11 is vulnerable to Broken Access Control

Software Podlove Podcast Publisher Type Plugin Vulnerable versions = 4.0.11 Fixed in 4.0.12 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1110 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 51ffbbb85b7f Credits Lucio Sá Required...

5.3CVSS6.5AI score0.00524EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder