3 matches found
CVE-2024-10778
creationtimestamp| type| source ---|---|--- 2024-11-13 02:22:09+00:00| seen| https://infosec.exchange/users/cve/statuses/113473259352194103...
CVE-2024-10778 BuddyPress Builder for Elementor – BuddyBuilder <= 1.7.4 - Authenticated (Contributor+) Post Disclosure
The BuddyPress Builder for Elementor – BuddyBuilder plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.7.4 via the 'elementor-template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticat...
WordPress BuddyPress Builder for Elementor – BuddyBuilder Plugin <= 1.7.4 is vulnerable to Sensitive Data Exposure
Software BuddyPress Builder for Elementor – BuddyBuilder Type Plugin Vulnerable versions = 1.7.4 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Sensitive Data Exposure CVE CVE-2024-10778 Patch priority Low CVSS severity Low 4.3 Developer StaxWP PSID...