Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:3 a.m.11 views

CVE-2024-39639

Broken Access Control vulnerability in Nickolas Bossinas WordPress File Upload allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress File Upload: from n/a through 4.24.7...

4.3CVSS6.9AI score0.00244EPSS
Exploits0References1
NVD
NVD
added 2024/11/01 3:15 p.m.15 views

CVE-2024-39639

Broken Access Control vulnerability in Nickolas Bossinas WordPress File Upload allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress File Upload: from n/a through 4.24.7...

4.3CVSS0.00244EPSS
Exploits0References1
CVE
CVE
added 2024/11/01 2:17 p.m.54 views

CVE-2024-39639

CVE-2024-39639 affects WordPress File Upload plugin (≤4.24.7). Root cause is Broken Access Control, with Patchstack noting CSRF involvement. Impact is reported as low to medium (CVSS 3.5–4.3 range); patched in version 4.24.8. No exploitation status provided in the sources; monitor for updates fro...

4.3CVSS4.7AI score0.00244EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/01 2:17 p.m.18 views

CVE-2024-39639 WordPress File Upload plugin <= 4.24.7 - Broken Access Control + CSRF vulnerability

Broken Access Control vulnerability in Nickolas Bossinas WordPress File Upload allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress File Upload: from n/a through 4.24.7...

4.3CVSS6.9AI score0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/01 2:17 p.m.19 views

CVE-2024-39639 WordPress File Upload plugin <= 4.24.7 - Broken Access Control + CSRF vulnerability

Broken Access Control vulnerability in Nickolas Bossinas WordPress File Upload allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress File Upload: from n/a through 4.24.7...

4.3CVSS0.00244EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/01 12:0 a.m.14 views

WordPress WordPress File Upload Plugin <= 4.24.7 is vulnerable to Broken Access Control

Software WordPress File Upload Type Plugin Vulnerable versions = 4.24.7 Fixed in 4.24.8 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-39639 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID c24820fca545 Credits emad Required privile...

4.3CVSS6.3AI score0.00244EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder