Lucene search
K

5 matches found

Nuclei
Nuclei
added 14 hours ago21 views

Pinterest Automatic < 4.14.4 - Unauthenticated Arbitrary Options Update

The Pinterest Automatic plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the 'wppinterestautomaticparserequest' function and the 'processform.php' script in versions up to, and including, 1.14.3. This makes it possible for unauthenticated attackers to...

9.8CVSS7AI score0.04528EPSS
Exploits1References5
NVD
NVD
added 2023/06/07 1:15 p.m.20 views

CVE-2021-4380

The Pinterest Automatic plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the 'wppinterestautomaticparserequest' function and the 'processform.php' script in versions up to, and including, 1.14.3. This makes it possible for unauthenticated attackers to...

9.8CVSS9.5AI score0.04528EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/06/07 12:43 p.m.11 views

CVE-2021-4380 Pinterest Automatic <= 4.14.3 - Unuathenticated Arbitrary Options Update

The Pinterest Automatic plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the 'wppinterestautomaticparserequest' function and the 'processform.php' script in versions up to, and including, 1.14.3. This makes it possible for unauthenticated attackers to...

9.8CVSS7.3AI score0.04528EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/06/07 12:43 p.m.54 views

CVE-2021-4380 Pinterest Automatic <= 4.14.3 - Unuathenticated Arbitrary Options Update

The Pinterest Automatic plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the 'wppinterestautomaticparserequest' function and the 'processform.php' script in versions up to, and including, 1.14.3. This makes it possible for unauthenticated attackers to...

9.8CVSS9.6AI score0.04528EPSS
Exploits1References4
CVE
CVE
added 2023/06/07 12:43 p.m.90 views

CVE-2021-4380

CVE-2021-4380 affects the Pinterest Automatic plugin for WordPress. The vulnerability is an authorization bypass caused by missing capability checks in the function wp_pinterest_automatic_parse_request and in process_form.php, allowing unauthenticated attackers to update arbitrary WordPress optio...

9.8CVSS9.2AI score0.04528EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder