3 matches found
CVE-2024-6750 Social Auto Poster <= 5.3.14 - Missing Authorization via Multiple Functions
The Social Auto Poster plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability check on multiple functions in all versions up to, and including, 5.3.14. This makes it possible for unauthenticated attackers to add, modify, or delete pos...
CVE-2024-6750
The CVE-2024-6750 entry for the Social Auto Poster plugin (WordPress) is supported by multiple sources describing an unauthenticated flaw caused by missing capability checks in several functions through version 5.3.14, allowing an attacker to add, modify, or delete post meta and plugin options. P...
WordPress Social Auto Poster Plugin <= 5.3.14 is vulnerable to Broken Access Control
Software Social Auto Poster Type Plugin Vulnerable versions = 5.3.14 Fixed in 5.3.15 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-6750 Patch priority High CVSS severity High 7.3 Developer Claim ownership PSID e7a22665ac54 Credits István Márton Required...