5 matches found
CVE-2024-43919
creationtimestamp| type| source ---|---|--- 2024-11-28 01:26:44+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-43919.yaml 2025-01-06 20:20:40+00:00| seen| https://infosec.exchange/users/randomrobbie/statuses/113783265036386612...
CVE-2024-43919
CVE-2024-43919 affects the YARPP plugin for WordPress up to version 5.30.10, with a missing authorization capability check allowing unauthenticated modification of display types (broken access control). The Nuclei template corroborates a Missing Authorization flaw in YARPP
CVE-2024-43919 WordPress Yet Another Related Posts Plugin (YARPP) plugin <= 5.30.10 - Broken Access Control vulnerability
Access Control vulnerability in YARPP YARPP allows . This issue affects YARPP: from n/a through 5.30.10...
CVE-2024-43919 WordPress Yet Another Related Posts Plugin (YARPP) plugin <= 5.30.10 - Broken Access Control vulnerability
Access Control vulnerability in YARPP YARPP allows . This issue affects YARPP: from n/a through 5.30.10...
WordPress YARPP Plugin <= 5.30.10 is vulnerable to Broken Access Control
Software YARPP Type Plugin Vulnerable versions = 5.30.10 Fixed in 5.30.11 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43919 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID b08b40ebe1e3 Credits Rafie Muhammad Patchstack Required...