Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:3 a.m.5 views

CVE-2024-6755

The Social Auto Poster plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the ‘wpwautoposterquickdeletemultiple’ function in all versions up to, and including, 5.3.14. This makes it possible for unauthenticated attackers to delete...

6.5CVSS6.9AI score0.00317EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/24 2:33 a.m.16 views

CVE-2024-6755 Social Auto Poster <= 5.3.14 - Missing Authorization to Unauthenticated Arbitrary Post Deletion

The Social Auto Poster plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the ‘wpwautoposterquickdeletemultiple’ function in all versions up to, and including, 5.3.14. This makes it possible for unauthenticated attackers to delete...

6.5CVSS6.4AI score0.00317EPSS
Exploits0References2
CVE
CVE
added 2024/07/24 2:33 a.m.57 views

CVE-2024-6755

The CVE-2024-6755 entry concerns the WordPress Social Auto Poster plugin (versions up to and including 5.3.14) suffering from a missing capability check in wpw_auto_poster_quick_delete_multiple, enabling unauthenticated actors to delete arbitrary posts. The connected data corroborates the root ca...

6.5CVSS6.4AI score0.00317EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/07/24 12:0 a.m.9 views

WordPress Social Auto Poster Plugin <= 5.3.14 is vulnerable to Broken Access Control

Software Social Auto Poster Type Plugin Vulnerable versions = 5.3.14 Fixed in 5.3.15 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-6755 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 68ae396383df Credits István Márton...

6.5CVSS6.5AI score0.00317EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder