3 matches found
CVE-2024-10952
The The Authors List plugin for WordPress is vulnerable to arbitrary shortcode execution via updateauthorslistajax AJAX action in all versions up to, and including, 2.0.4. This is due to the software allowing users to execute an action that does not properly validate a value before running...
CVE-2024-10952
creationtimestamp| type| source ---|---|--- 2024-12-04 02:52:56+00:00| seen| https://infosec.exchange/users/cve/statuses/113592288895692725 2024-12-04 05:02:44+00:00| seen| https://t.me/cvedetector/11943...
CVE-2024-10952 Authors List <= 2.0.4 - Unauthenticated Arbitrary Shortcode Execution via update_authors_list_ajax
The The Authors List plugin for WordPress is vulnerable to arbitrary shortcode execution via updateauthorslistajax AJAX action in all versions up to, and including, 2.0.4. This is due to the software allowing users to execute an action that does not properly validate a value before running...