Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 12:55 p.m.10 views

CVE-2024-43354

Deserialization of Untrusted Data vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through = 2.7.2...

9.8CVSS5.9AI score0.00528EPSS
Exploits0References1
Circl
Circl
added 2024/08/19 10:43 p.m.8 views

CVE-2024-43354

creationtimestamp| type| source ---|---|--- 2024-08-19 22:43:23+00:00| seen| https://t.me/cvedetector/3554...

9.8CVSS4.8AI score0.00528EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/19 7:30 p.m.16 views

CVE-2024-43354 WordPress myCred plugin <= 2.7.2 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through = 2.7.2...

9.8CVSS5.2AI score0.00528EPSS
Exploits0References1
CVE
CVE
added 2024/08/19 7:30 p.m.69 views

CVE-2024-43354

CVE-2024-43354 relates to the WordPress plugin myCred, versions ≤ 2.7.2, with a PHP Object Injection vulnerability caused by untrusted data deserialization. The issue affects the myCred component (WordPress plugin) and is described in multiple connected sources as a deserialization of untrusted d...

9.8CVSS5.9AI score0.00528EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.18 views

WordPress myCred Plugin <= 2.7.2 is vulnerable to PHP Object Injection

Software myCred Type Plugin Vulnerable versions = 2.7.2 Fixed in 2.7.3 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-43354 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID d4c5d0fdee74 Credits LVT-tholv2k Required privilege Unauthenticated...

9.8CVSS6.8AI score0.00528EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder