4 matches found
CVE-2024-13541
The aDirectory – WordPress Directory Listing Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the adqsdeletelisting function in all versions up to, and including, 2.3. This makes it possible for authenticated attackers, with...
CVE-2024-13541
The aDirectory – WordPress Directory Listing Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the adqsdeletelisting function in all versions up to, and including, 2.3. This makes it possible for authenticated attackers, with...
CVE-2024-13541
creationtimestamp| type| source ---|---|--- 2025-02-12 03:23:59+00:00| seen| https://infosec.exchange/users/cve/statuses/113988772730198797 2025-02-12 04:16:51+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhxcuyzelv2i 2025-02-12 05:06:53+00:00| seen|...
CVE-2024-13541 aDirectory – WordPress Directory Listing Plugin <= 2.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion
The aDirectory – WordPress Directory Listing Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the adqsdeletelisting function in all versions up to, and including, 2.3. This makes it possible for authenticated attackers, with...