2 matches found
CVE-2024-9265 Echo RSS Feed Post Generator <= 5.4.6 - Unauthenticated Privilege Escalation
The Echo RSS Feed Post Generator plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 5.4.6. This is due to the plugin not properly restricting the roles that can set during registration through the echocheckpostheadersent function. This makes it possib...
WordPress Echo RSS Feed Post Generator Plugin for WordPress Plugin <= 5.4.6 is vulnerable to Privilege Escalation
Software Echo RSS Feed Post Generator Plugin for WordPress Type Plugin Vulnerable versions = 5.4.6 Fixed in 5.4.7 OWASP Top 10 A4: Insecure Design Classification Privilege Escalation CVE CVE-2024-9265 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 2e4345a54622 Credits...