Lucene search
K

4 matches found

CVE
CVE
added 2023/08/31 5:33 a.m.56 views

CVE-2023-3636

The CVE-2023-3636 entry concerns the WP Project Manager WordPress plugin (versions

8.8CVSS8.5AI score0.00689EPSS
Exploits1References3Affected Software1
Packet Storm
Packet Storm
added 2023/08/10 12:0 a.m.399 views

WordPress WP Project Manager 2.6.4 Privilege Escalation

Description: WP Project Manager = 2.6.4 – Arbitrary Usermeta Update to Authenticated Subscriber+ Privilege Escalation Affected Plugin: WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts Plugin Slug: wedevs-project-manager Affected Versions: =...

7.1AI score0.00689EPSS
Exploits1
Wordfence Blog
Wordfence Blog
added 2023/08/09 6:4 p.m.40 views

weDevs Addresses Privilege Escalation Vulnerability in WP Project Manager WordPress Plugin

On July 9, 2023, our Wordfence Threat Intelligence team identified and began the responsible disclosure process for a Privilege Escalation vulnerability in weDevs’s WP Project Manager plugin, which is actively installed on more than 10,000 WordPress websites. This vulnerability makes it possible...

6.5CVSS6.9AI score0.00689EPSS
Exploits1
Patchstack
Patchstack
added 2023/08/09 12:0 a.m.16 views

WordPress WP Project Manager Plugin <= 2.6.4 is vulnerable to Broken Access Control

Software WP Project Manager Type Plugin Vulnerable versions = 2.6.4 Fixed in 2.6.5 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-3636 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID dbb52708f7ad Credits István Márton Required...

8.8CVSS6.4AI score0.00689EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder