2 matches found
CVE-2024-1844
CVE-2024-1844 (RevivePress plugin) Vulnerability in RevivePress – Keep your Old Content Evergreen for WordPress (up to version 1.5.6) due to missing capability checks in import_data and copy_data. This enables authenticated attackers with subscriber-level access or higher to view and modify plugi...
WordPress RevivePress Plugin <= 1.5.6 is vulnerable to Broken Access Control
Software RevivePress Type Plugin Vulnerable versions = 1.5.6 Fixed in 1.5.6.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1844 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1928554db9aa Credits Lucio Sá Required privilege...