Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:1 a.m.7 views

CVE-2024-25908

Missing Authorization vulnerability in JoomUnited WP Media folder.This issue affects WP Media folder: from n/a through 5.7.2...

4.3CVSS5.2AI score0.00337EPSS
Exploits0References1
NVD
NVD
added 2024/04/11 1:24 a.m.14 views

CVE-2024-25908

Missing Authorization vulnerability in JoomUnited WP Media folder.This issue affects WP Media folder: from n/a through 5.7.2...

4.3CVSS4.7AI score0.00337EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/21 5:39 p.m.17 views

CVE-2024-25908 WordPress WP Media folder plugin <= 5.7.2 - Subscriber+ Arbitrary Post/Page Modification vulnerability

Missing Authorization vulnerability in JoomUnited WP Media folder.This issue affects WP Media folder: from n/a through 5.7.2...

4.3CVSS5AI score0.00337EPSS
Exploits0References1
CVE
CVE
added 2024/03/21 5:39 p.m.36 views

CVE-2024-25908

CVE-2024-25908 affects the WordPress plugin WP Media Folder (JoomUnited) up to version 5.7.2. The root cause is missing authorization validation, enabling unauthenticated or subscriber-level users to modify post/page titles and excerpts. Public sources in connected data confirm the vulnerability ...

4.3CVSS5.2AI score0.00337EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/02/12 12:0 a.m.13 views

WordPress WP Media folder Plugin <= 5.7.2 is vulnerable to Settings Change

Software WP Media folder Type Plugin Vulnerable versions = 5.7.2 Fixed in 5.7.3 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2024-25908 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 54ad5de45957 Credits Dave Jong Patchstack Required...

4.3CVSS6.6AI score0.00337EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder