Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/03/03 9:16 a.m.9 views

CVE-2024-13697

The Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.7.4 via the 'nicelinks'. This makes it possible for unauthenticated attackers to make web request...

6.5CVSS6.7AI score0.00262EPSS
Exploits0References1
Circl
Circl
added 2025/03/01 9:30 a.m.7 views

CVE-2024-13697

creationtimestamp| type| source ---|---|--- 2025-03-01 09:30:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6067 2025-03-01 12:16:06+00:00| seen| https://t.me/cvedetector/19231 2025-03-02 11:46:58+00:00| seen| Telegram/XgnI4V8Wnz3lSuKrUbZrFlszjJpI1TBdy26rdGlrarwKVH5h...

6.5CVSS8.7AI score0.00262EPSS
Exploits0References2
NVD
NVD
added 2025/03/01 9:15 a.m.7 views

CVE-2024-13697

The Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.7.4 via the 'nicelinks'. This makes it possible for unauthenticated attackers to make web request...

6.5CVSS0.00262EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/01 8:23 a.m.16 views

CVE-2024-13697 Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss <= 2.7.4 - Unauthenticated Limited Server-Side Request Forgery in nice_links

The Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.7.4 via the 'nicelinks'. This makes it possible for unauthenticated attackers to make web request...

4.8CVSS0.00262EPSS
Exploits0References2
CVE
CVE
added 2025/03/01 8:23 a.m.50 views

CVE-2024-13697

CVE-2024-13697 documents an unauthenticated SSRF in Better Messages for WordPress (plugin versions up to 2.7.4) via the nice_links feature. Exploitation requires Enable link previews (default). The connected docs indicate a patch is available and advise upgrading to a fixed version; no further ex...

6.5CVSS6.8AI score0.00262EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder