5 matches found
CVE-2024-10667
creationtimestamp| type| source ---|---|--- 2024-11-09 04:40:01+00:00| seen| https://infosec.exchange/users/cve/statuses/113451152260299298 2024-11-09 06:35:53+00:00| seen| https://t.me/cvedetector/10275...
CVE-2024-10667 Content Slider Block – Create fully functional slider with Gutenberg block <= 3.1.5 - Authenticated (Contributor+) Post Disclosure
The Content Slider Block plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 3.1.5 via the csb shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access...
CVE-2024-10667 Content Slider Block – Create fully functional slider with Gutenberg block <= 3.1.5 - Authenticated (Contributor+) Post Disclosure
The Content Slider Block plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 3.1.5 via the csb shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access...
CVE-2024-10667
CVE-2024-10667 – Content Slider Block (WordPress) The WordPress plugin Content Slider Block is vulnerable to Information Exposure in all versions up to 3.1.5 via the csb shortcode, allowing authenticated attackers with Contributor-level access and above to extract data from password-protected, pr...
WordPress Content Slider Block Plugin <= 3.1.5 is vulnerable to Sensitive Data Exposure
Software Content Slider Block Type Plugin Vulnerable versions = 3.1.5 Fixed in 3.1.6 OWASP Top 10 A3: Injection Classification Sensitive Data Exposure CVE CVE-2024-10667 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID abf2f7c885a5 Credits Francesco Carlucci Required...