2 matches found
CVE-2024-11271
The CVE-2024-11271 entry concerns the WordPress Webinar Plugin – WebinarPress (WP Webinar System) vulnerable to data modification due to a missing capability check in multiple functions. Affected versions include all up to 1.33.24. The vulnerability allows authenticated users with subscriber-leve...
CVE-2024-11271 WordPress Webinar Plugin – WebinarPress <= 1.33.24 - Missing Authorization to Authenticated (Subscriber+) Webinar Updates
The WordPress Webinar Plugin – WebinarPress plugin for WordPress is vulnerable to modification of data due to a missing capability check on several functions in all versions up to, and including, 1.33.24. This makes it possible for authenticated attackers, with subscriber-level access and above, ...