3 matches found
CVE-2024-24883 WordPress Prime Slider plugin <= 3.11.10 - Broken Access Control on Duplicate Post vulnerability
Missing Authorization vulnerability in BdThemes Prime Slider – Addons For Elementor.This issue affects Prime Slider – Addons For Elementor: from n/a through 3.11.10...
CVE-2024-24883
CVE-2024-24883 affects BdThemes Prime Slider – Addons For Elementor (WordPress). Affected versions: up to 3.11.10. Root cause: missing authorization check in bdt_duplicate_as_draft() allows authenticated users with contributor-level access and above to duplicate private/password-protected posts. ...
WordPress Prime Slider – Addons For Elementor Plugin <= 3.11.10 is vulnerable to Broken Access Control
Software Prime Slider – Addons For Elementor Type Plugin Vulnerable versions = 3.11.10 Fixed in 3.11.11 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-24883 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID f8a468acb6f5 Credits Khali...