Lucene search
K

4 matches found

NVD
NVD
added 2024/10/25 8:15 a.m.29 views

CVE-2024-9630

The WPS Telegram Chat plugin for WordPress is vulnerable to authorization bypass due to a missing capability check when accessing messages in versions up to, and including, 4.6.0. This makes it possible for unauthenticated attackers to view the messages that are sent through the Telegram Bot API...

5.4CVSS0.00263EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/25 7:38 a.m.29 views

CVE-2024-9630 WPS Telegram Chat <= 4.6.0 - Missing Authorization to Information Exposure

The WPS Telegram Chat plugin for WordPress is vulnerable to authorization bypass due to a missing capability check when accessing messages in versions up to, and including, 4.6.0. This makes it possible for unauthenticated attackers to view the messages that are sent through the Telegram Bot API...

5.4CVSS0.00263EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/10/25 7:38 a.m.12 views

CVE-2024-9630 WPS Telegram Chat <= 4.6.0 - Missing Authorization to Information Exposure

The WPS Telegram Chat plugin for WordPress is vulnerable to authorization bypass due to a missing capability check when accessing messages in versions up to, and including, 4.6.0. This makes it possible for unauthenticated attackers to view the messages that are sent through the Telegram Bot API...

5.4CVSS5.9AI score0.00263EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/10/24 12:0 a.m.20 views

WordPress WPS Telegram Chat Plugin <= 4.5.4 is vulnerable to Broken Access Control

Software WPS Telegram Chat Type Plugin Vulnerable versions = 4.5.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-9630 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 9cb16fad33b1 Credits István Márton Required privile...

5.4CVSS6.5AI score0.00263EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder