Lucene search
K

4 matches found

Circl
Circl
added 2024/10/25 11:13 a.m.7 views

CVE-2024-9628

creationtimestamp| type| source ---|---|--- 2024-10-25 11:13:44+00:00| seen| https://t.me/cvedetector/8906...

6.5CVSS4.8AI score0.00267EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/25 7:38 a.m.18 views

CVE-2024-9628 WPS Telegram Chat <= 4.6.0 - Authenticated (Subscriber+) Unauthorized Access to Telegram Bot API

The WPS Telegram Chat plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'WpsTelegramChatAdmin::checkСonnection' function in versions up to, and including, 4.6.0. This makes it possible for authenticated attackers, wit...

6.3CVSS5.9AI score0.00267EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/25 7:38 a.m.47 views

CVE-2024-9628 WPS Telegram Chat <= 4.6.0 - Authenticated (Subscriber+) Unauthorized Access to Telegram Bot API

The WPS Telegram Chat plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'WpsTelegramChatAdmin::checkСonnection' function in versions up to, and including, 4.6.0. This makes it possible for authenticated attackers, wit...

6.3CVSS0.00267EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/10/24 12:0 a.m.17 views

WordPress WPS Telegram Chat Plugin <= 4.5.4 is vulnerable to Broken Access Control

Software WPS Telegram Chat Type Plugin Vulnerable versions = 4.5.4 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Access Control CVE CVE-2024-9628 Patch priority Medium CVSS severity Medium 6.3 Developer Claim ownership PSID 35d166ea4c51 Credits...

6.5CVSS6.5AI score0.00267EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder