Lucene search
K

4 matches found

Cvelist
Cvelist
added 2024/06/24 6:0 a.m.42 views

CVE-2024-4900 SEOPress < 7.8 - Contributor+ Open Redirect

The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post settings, which could allow contributor and above role to perform Open redirect attacks against any user viewing a malicious post...

0.00329EPSS
Exploits2References1
CVE
CVE
added 2024/06/24 6:0 a.m.63 views

CVE-2024-4900

The vulnerability CVE-2024-4900 affects the SEOPress WordPress plugin and is described as an Open Redirect resulting from failing to validate/escape a Post setting in versions before 7.8. Public records (NVD/NVD-derived entries and Red Hat) confirm the issue's basic description and attribution to...

6.1CVSS6.4AI score0.00329EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/24 6:0 a.m.19 views

CVE-2024-4900 SEOPress < 7.8 - Contributor+ Open Redirect

The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post settings, which could allow contributor and above role to perform Open redirect attacks against any user viewing a malicious post...

7AI score0.00329EPSS
Exploits2References1
Patchstack
Patchstack
added 2024/06/24 12:0 a.m.20 views

WordPress SEOPress Plugin < 7.8 is vulnerable to Open Redirection

Software SEOPress Type Plugin Vulnerable versions 7.8 Fixed in 7.8 OWASP Top 10 A1: Injection Classification Open Redirection CVE CVE-2024-4900 Patch priority Low CVSS severity Low 4.1 Developer Claim ownership PSID 872385ee96c3 Credits Dmitrii Ignatyev Required privilege Contributor Published 24...

7.2AI score0.00329EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder