4 matches found
CVE-2024-12281
The Homey theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.2. This is due to the plugin allowing users who are registering new accounts to set their own role. This makes it possible for unauthenticated attackers to gain elevated privileges by...
CVE-2024-12281
creationtimestamp| type| source ---|---|--- 2025-03-05 11:37:36+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6536 2025-03-05 14:26:15+00:00| seen| https://t.me/cvedetector/19630 2025-03-05 15:40:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljncu6emy62s 2025-03-06...
CVE-2024-12281 Homey <= 2.4.2 - Unauthenticated Privilege Escalation in homey_save_profile
The Homey theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.2. This is due to the plugin allowing users who are registering new accounts to set their own role. This makes it possible for unauthenticated attackers to gain elevated privileges by...
CVE-2024-12281 Homey <= 2.4.2 - Unauthenticated Privilege Escalation in homey_save_profile
The Homey theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.2. This is due to the plugin allowing users who are registering new accounts to set their own role. This makes it possible for unauthenticated attackers to gain elevated privileges by...