Lucene search
K

3 matches found

Vulnrichment
Vulnrichment
added 2024/06/06 2:38 a.m.10 views

CVE-2024-2017 Countdown, Coming Soon, Maintenance – Countdown & Clock <= 2.7.8 - Missing Authorization to Authenticated (Subscriber+) PHP Object Injection

The Countdown, Coming Soon, Maintenance – Countdown & Clock plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the conditionsRow and switchCountdown functions in all versions up to, and including, 2.7.8. This makes it possible for authenticated attacker...

5.4CVSS6.5AI score0.00317EPSS
Exploits0References5
CVE
CVE
added 2024/06/06 2:38 a.m.58 views

CVE-2024-2017

CVE-2024-2017 (Countdown, Coming Soon, Maintenance – Countdown & Clock) affects WordPress plugin Countdown Builder on all versions up to 2.7.8. Red Hat’s security entry confirms an unauthorized access flaw caused by a missing capability check in the conditionsRow and switchCountdown functions, al...

5.4CVSS5.6AI score0.00317EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2024/06/06 2:38 a.m.18 views

CVE-2024-2017 Countdown, Coming Soon, Maintenance – Countdown & Clock <= 2.7.8 - Missing Authorization to Authenticated (Subscriber+) PHP Object Injection

The Countdown, Coming Soon, Maintenance – Countdown & Clock plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the conditionsRow and switchCountdown functions in all versions up to, and including, 2.7.8. This makes it possible for authenticated attacker...

5.4CVSS5.2AI score0.00317EPSS
Exploits0References5
Rows per page
Query Builder