Lucene search
+L

5 matches found

GithubExploit
GithubExploit
added 2025/03/12 9:0 p.m.350 views

Exploit for CVE-2024-10674

CVE-2024-10674 Exploit - Th Shop Mania --username --password...

8.8CVSS8.8AI score0.01683EPSS
Exploits2
Cvelist
Cvelist
added 2024/11/09 3:18 a.m.24 views

CVE-2024-10674 Th Shop Mania <= 1.4.9 - Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation

The Th Shop Mania theme for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the thshopmaniainstallandactivatecallback function in all versions up to, and including, 1.4.9. This makes it possible for authenticated attackers, with...

8.8CVSS0.01683EPSS
Exploits2References4
Vulnrichment
Vulnrichment
added 2024/11/09 3:18 a.m.8 views

CVE-2024-10674 Th Shop Mania <= 1.4.9 - Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation

The Th Shop Mania theme for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the thshopmaniainstallandactivatecallback function in all versions up to, and including, 1.4.9. This makes it possible for authenticated attackers, with...

8.8CVSS8AI score0.01683EPSS
Exploits2References4
CVE
CVE
added 2024/11/09 3:18 a.m.65 views

CVE-2024-10674

CVE-2024-10674 affects the WordPress theme “Th Shop Mania” up to version 1.4.9. The vulnerability arises from a missing capability check in th_shop_mania_install_and_activate_callback(), allowing authenticated attackers (Subscriber level and above) to install arbitrary plugins. Reported evidence ...

8.8CVSS8.9AI score0.01683EPSS
Exploits2References4
Patchstack
Patchstack
added 2024/11/08 12:0 a.m.19 views

WordPress Th Shop Mania Theme <= 1.4.9 is vulnerable to Arbitrary Code Execution

Software Th Shop Mania Type Theme Vulnerable versions = 1.4.9 Fixed in 1.5.0 OWASP Top 10 A7: Identification and Authentication Failures Classification Arbitrary Code Execution CVE CVE-2024-10674 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 314680b4b995 Credits Sean...

8.8CVSS6.7AI score0.01683EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder