5 matches found
CVE-2024-0779
The Enjoy Social Feed plugin for WordPress website WordPress plugin through 6.2.2 does not have authorisation and CSRF in various function hooked to admininit, allowing unauthenticated users to call them and unlink arbitrary users Instagram Account for example...
WordPress Enjoy Social Feed plugin for WordPress website Plugin <= 6.2.2 is vulnerable to Broken Access Control
Software Enjoy Social Feed plugin for WordPress website Type Plugin Vulnerable versions = 6.2.2 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-0779 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID e8f7d1a904c7 Credits...
CVE-2024-0779
The CVE-2024-0779 entry concerns the WordPress plugin Enjoy Social Feed (
CVE-2024-0779 Enjoy Social Feed <= 6.2.2 - Unauthenticated Arbitrary Instagram Account Unlinking
The Enjoy Social Feed plugin for WordPress website WordPress plugin through 6.2.2 does not have authorisation and CSRF in various function hooked to admininit, allowing unauthenticated users to call them and unlink arbitrary users Instagram Account for example...
CVE-2024-0779 Enjoy Social Feed <= 6.2.2 - Unauthenticated Arbitrary Instagram Account Unlinking
The Enjoy Social Feed plugin for WordPress website WordPress plugin through 6.2.2 does not have authorisation and CSRF in various function hooked to admininit, allowing unauthenticated users to call them and unlink arbitrary users Instagram Account for example...