Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:40 a.m.6 views

CVE-2024-10796

The If-So Dynamic Content Personalization plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.2.1 via the 'ifso-show-post' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers...

4.3CVSS6.5AI score0.00457EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/21 4:24 a.m.42 views

CVE-2024-10796 If-So Dynamic Content Personalization <= 1.9.2.1 - Authenticated (Contributor+) Post Disclosure

The If-So Dynamic Content Personalization plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.2.1 via the 'ifso-show-post' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers...

4.3CVSS0.00457EPSS
Exploits0References2
CVE
CVE
added 2024/11/21 4:24 a.m.56 views

CVE-2024-10796

CVE-2024-10796 (If-So Dynamic Content Personalization, WordPress) The WordPress plugin is vulnerable to information exposure on all versions up to 1.9.2.1 via the ifso-show-post shortcode due to insufficient post access restrictions. Authenticated attackers with Contributor level or higher could ...

4.3CVSS4.3AI score0.00457EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/11/21 12:0 a.m.11 views

WordPress If-So Dynamic Content Personalization Plugin <= 1.9.2.1 is vulnerable to Broken Access Control

Software If-So Dynamic Content Personalization Type Plugin Vulnerable versions = 1.9.2.1 Fixed in 1.9.2.2 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Access Control CVE CVE-2024-10796 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...

4.3CVSS6.7AI score0.00457EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder