4 matches found
CVE-2024-32677
Missing Authorization vulnerability in LoginPress LoginPress Pro.This issue affects LoginPress Pro: from n/a before 3.0.0...
CVE-2024-32677 WordPress LoginPress Pro plugin < 3.0.0 - Unauth. License Activation/Deactivation vulnerability
Missing Authorization vulnerability in LoginPress LoginPress Pro.This issue affects LoginPress Pro: from n/a before 3.0.0...
CVE-2024-32677
CVE-2024-32677 affects LoginPress Pro (before 3.0.0). The Red Hat and Wordfence references describe a Missing Authorization to License Status Update vulnerability in LoginPress Pro; no exploit, impact, or remediation details are provided in the connected documents.
WordPress LoginPress Pro Plugin < 3.0.0 is vulnerable to Settings Change
Software LoginPress Pro Type Plugin Vulnerable versions 3.0.0 Fixed in 3.0.0 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2024-32677 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4886360ccb57 Credits Dave Jong Patchstack Required privileg...