4 matches found
CVE-2024-4900 SEOPress < 7.8 - Contributor+ Open Redirect
The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post settings, which could allow contributor and above role to perform Open redirect attacks against any user viewing a malicious post...
CVE-2024-4900
The vulnerability CVE-2024-4900 affects the SEOPress WordPress plugin and is described as an Open Redirect resulting from failing to validate/escape a Post setting in versions before 7.8. Public records (NVD/NVD-derived entries and Red Hat) confirm the issue's basic description and attribution to...
CVE-2024-4900 SEOPress < 7.8 - Contributor+ Open Redirect
The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post settings, which could allow contributor and above role to perform Open redirect attacks against any user viewing a malicious post...
WordPress SEOPress Plugin < 7.8 is vulnerable to Open Redirection
Software SEOPress Type Plugin Vulnerable versions 7.8 Fixed in 7.8 OWASP Top 10 A1: Injection Classification Open Redirection CVE CVE-2024-4900 Patch priority Low CVSS severity Low 4.1 Developer Claim ownership PSID 872385ee96c3 Credits Dmitrii Ignatyev Required privilege Contributor Published 24...