Lucene search
K

4 matches found

GithubExploit
GithubExploit
added 2025/03/26 1:5 a.m.301 views

Exploit for CVE-2024-12252

SEO LAT Auto Post = 2.2.1 - Remote Code Execution Descrip...

9.8CVSS9AI score0.03117EPSS
Exploits1
Cvelist
Cvelist
added 2025/01/07 4:22 a.m.17 views

CVE-2024-12252 SEO LAT Auto Post <= 2.2.1 - Missing Authorization to File Overwrite/Upload (Remote Code Execution)

The SEO LAT Auto Post plugin for WordPress is vulnerable to file overwrite due to a missing capability check on the remoteupdate AJAX action in all versions up to, and including, 2.2.1. This makes it possible for unauthenticated attackers to overwrite the seo-beginner-auto-post.php file which can...

9.8CVSS0.03117EPSS
Exploits1References2
CVE
CVE
added 2025/01/07 4:22 a.m.64 views

CVE-2024-12252

The CVE-2024-12252 entry concerns the WordPress plugin SEO LAT Auto Post (versions up to 2.2.1). A missing capability check on the remote_update AJAX action allows unauthenticated attackers to overwrite the seo-beginner-auto-post.php file, enabling remote code execution. Related connected documen...

9.8CVSS9.7AI score0.03117EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/01/07 4:22 a.m.14 views

CVE-2024-12252 SEO LAT Auto Post <= 2.2.1 - Missing Authorization to File Overwrite/Upload (Remote Code Execution)

The SEO LAT Auto Post plugin for WordPress is vulnerable to file overwrite due to a missing capability check on the remoteupdate AJAX action in all versions up to, and including, 2.2.1. This makes it possible for unauthenticated attackers to overwrite the seo-beginner-auto-post.php file which can...

9.8CVSS9.7AI score0.03117EPSS
Exploits1References2
Rows per page
Query Builder