Lucene search
+L

4 matches found

cve
cve
added 2024/03/23 2:53 p.m.77 views

CVE-2024-24832

CVE-2024-24832 affects WordPress plugin EventPrime (Metagauss) up to version 3.3.9. Root cause: missing/improper authorization check in saving event bookings, enabling unauthenticated modification of ticket prices/attributes (Broken Access Control). Impact per sources: unauthorized data modificat...

8.2CVSS8.6AI score0.00439EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2024/03/23 2:53 p.m.25 views

CVE-2024-24832 WordPress EventPrime plugin <= 3.3.9 - Broken Access Control vulnerability

Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n/a through 3.3.9...

8.2CVSS8.4AI score0.00439EPSS
Exploits0References1
cvelist
cvelist
added 2024/03/23 2:53 p.m.26 views

CVE-2024-24832 WordPress EventPrime plugin <= 3.3.9 - Broken Access Control vulnerability

Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n/a through 3.3.9...

8.2CVSS8.4AI score0.00439EPSS
Exploits0References1
patchstack
patchstack
added 2024/02/02 12:0 a.m.11 views

WordPress EventPrime Plugin <= 3.3.9 is vulnerable to Broken Access Control

Software EventPrime Type Plugin Vulnerable versions = 3.3.9 Fixed in 3.4.0 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-24832 Patch priority Low CVSS severity Low 8.2 Developer Claim ownership PSID 611d9617bb60 Credits Abdi Pranata Required privilege...

8.2CVSS6.6AI score0.00439EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder