Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 3:26 a.m.15 views

CVE-2024-13554

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the reorderroute function in all versions up to, and including, 3.0.13. This makes it possible for unauthenticated attackers to reorder pos...

5.3CVSS9.2AI score0.00289EPSS
Exploits0References1
NVD
NVD
added 2025/02/12 4:15 a.m.28 views

CVE-2024-13554

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the reorderroute function in all versions up to, and including, 3.0.13. This makes it possible for unauthenticated attackers to reorder pos...

5.3CVSS0.00289EPSS
Exploits0References2
Circl
Circl
added 2025/02/12 3:23 a.m.15 views

CVE-2024-13554

creationtimestamp| type| source ---|---|--- 2025-02-12 03:23:59+00:00| seen| https://infosec.exchange/users/cve/statuses/113988772745294473 2025-02-12 04:16:54+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhxcv3inor2g 2025-02-12 05:06:50+00:00| seen|...

5.3CVSS8.7AI score0.00289EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/02/12 3:21 a.m.30 views

CVE-2024-13554 The Ultimate WordPress Toolkit – WP Extended <= 3.0.13 - Missing Authorization to Unauthenticated Post Order Manipulation

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the reorderroute function in all versions up to, and including, 3.0.13. This makes it possible for unauthenticated attackers to reorder pos...

5.3CVSS0.00289EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/02/12 3:21 a.m.11 views

CVE-2024-13554 The Ultimate WordPress Toolkit – WP Extended <= 3.0.13 - Missing Authorization to Unauthenticated Post Order Manipulation

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the reorderroute function in all versions up to, and including, 3.0.13. This makes it possible for unauthenticated attackers to reorder pos...

5.3CVSS5.2AI score0.00289EPSS
Exploits0References2
Rows per page
Query Builder