Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 10:37 a.m.5 views

CVE-2024-12129

The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royalrestorebackup' function in all versions up to, and including, 2.9.2. This makes it possible for authenticated attackers, with...

8.8CVSS9.4AI score0.0036EPSS
Exploits0References1
Circl
Circl
added 2025/01/30 2:1 p.m.6 views

CVE-2024-12129

creationtimestamp| type| source ---|---|--- 2025-01-30 14:01:58+00:00| seen| https://infosec.exchange/users/cve/statuses/113917671374380676 2025-01-30 14:16:29+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgxodbpgli2t 2025-01-30 16:50:57+00:00| seen|...

8.8CVSS6.9AI score0.0036EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/30 1:42 p.m.8 views

CVE-2024-12129 Royal Core <= 2.9.2 - Authenticated (Subscriber+) Arbitrary Options Update

The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royalrestorebackup' function in all versions up to, and including, 2.9.2. This makes it possible for authenticated attackers, with...

8.8CVSS8.7AI score0.0036EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/30 1:42 p.m.12 views

CVE-2024-12129 Royal Core <= 2.9.2 - Authenticated (Subscriber+) Arbitrary Options Update

The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royalrestorebackup' function in all versions up to, and including, 2.9.2. This makes it possible for authenticated attackers, with...

8.8CVSS0.0036EPSS
Exploits0References2
Rows per page
Query Builder