Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2023/07/12 12:0 a.m.24 views

WordPress WP Activity Log Plugin < 4.5.2 Multiple Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wpwhitesecurity:wpactivitylog"; ifdescription...

4.3CVSS6.9AI score0.00552EPSS
Exploits0References4
OSV
OSV
added 2023/06/09 1:15 p.m.7 views

CVE-2023-2284

The WP Activity Log Premium plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxswitchdb function in versions up to, and including, 4.5.0. This makes it possible for authenticated attackers with subscriber-level or higher to make...

4.3CVSS7.3AI score0.00386EPSS
Exploits0References2
NVD
NVD
added 2023/06/09 1:15 p.m.13 views

CVE-2023-2284

The WP Activity Log Premium plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxswitchdb function in versions up to, and including, 4.5.0. This makes it possible for authenticated attackers with subscriber-level or higher to make...

4.3CVSS4.3AI score0.00386EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/06/09 12:32 p.m.13 views

CVE-2023-2284 WP Activity Log Premium <= 4.5.0 - Missing Authorization via ajax_switch_db

The WP Activity Log Premium plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxswitchdb function in versions up to, and including, 4.5.0. This makes it possible for authenticated attackers with subscriber-level or higher to make...

4.3CVSS6.6AI score0.00386EPSS
Exploits0References2
Rows per page
Query Builder