Lucene search
+L

5 matches found

Circl
Circl
added 2024/12/14 5:48 a.m.7 views

CVE-2024-12447

creationtimestamp| type| source ---|---|--- 2024-12-14 05:48:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113649603175317845 2024-12-14 06:49:44+00:00| seen| https://t.me/cvedetector/12918...

4.3CVSS8.7AI score0.003EPSS
Exploits0References2
NVD
NVD
added 2024/12/14 5:15 a.m.8 views

CVE-2024-12447

The Get Post Content Shortcode plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 0.4 via the 'post-content' shortcode due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with...

4.3CVSS0.003EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/14 4:23 a.m.5 views

CVE-2024-12447 Get Post Content Shortcode <= 0.4 - Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Disclosure via post_content Shortcode

The Get Post Content Shortcode plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 0.4 via the 'post-content' shortcode due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with...

4.3CVSS6.5AI score0.003EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/14 4:23 a.m.18 views

CVE-2024-12447 Get Post Content Shortcode <= 0.4 - Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Disclosure via post_content Shortcode

The Get Post Content Shortcode plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 0.4 via the 'post-content' shortcode due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with...

4.3CVSS0.003EPSS
Exploits0References2
CVE
CVE
added 2024/12/14 4:23 a.m.43 views

CVE-2024-12447

CVE-2024-12447 is a vulnerability in the Get Post Content Shortcode plugin for WordPress, affecting all versions up to 0.4. It enables Insecure Direct Object Reference via the post_content shortcode due to missing validation on a user-controlled key, allowing authenticated attackers with Contribu...

4.3CVSS4.3AI score0.003EPSS
Exploits0References2
Rows per page
Query Builder