5 matches found
CVE-2024-13468
creationtimestamp| type| source ---|---|--- 2025-02-19 08:16:22+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lijdjq7chn2g 2025-02-19 08:40:56+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4781 2025-02-19 15:39:51+00:00| seen|...
CVE-2024-13468
The Trash Duplicate and 301 Redirect plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'duplicates-action-top' action in all versions up to, and including, 1.9. This makes it possible for unauthenticated attackers to delete arbitrary...
CVE-2024-13468
CVE-2024-13468 concerns the WordPress plugin Trash Duplicate and 301 Redirect, affecting all versions up to 1.9. The flaw is an missing capability check on the action 'duplicates-action-top', enabling unauthenticated attackers to delete arbitrary posts/pages. The Wordfence entry shows this vulner...
CVE-2024-13468 Trash Duplicate and 301 Redirect <= 1.9 - Missing Authorization to Unauthenticated Arbitrary Post Deletion
The Trash Duplicate and 301 Redirect plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'duplicates-action-top' action in all versions up to, and including, 1.9. This makes it possible for unauthenticated attackers to delete arbitrary...
CVE-2024-13468 Trash Duplicate and 301 Redirect <= 1.9 - Missing Authorization to Unauthenticated Arbitrary Post Deletion
The Trash Duplicate and 301 Redirect plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'duplicates-action-top' action in all versions up to, and including, 1.9. This makes it possible for unauthenticated attackers to delete arbitrary...