Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 4:39 a.m.9 views

CVE-2024-9846

The The Enable Shortcodes inside Widgets,Comments and Experts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.0.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

7.3CVSS7.6AI score0.00542EPSS
Exploits0References1
NVD
NVD
added 2024/10/30 3:15 a.m.17 views

CVE-2024-9846

The The Enable Shortcodes inside Widgets,Comments and Experts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.0.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

7.3CVSS0.00542EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/30 2:4 a.m.15 views

CVE-2024-9846 Enable Shortcodes inside Widgets,Comments and Experts <= 1.0.0 - Unauthenticated Arbitrary Shortcode Execution

The The Enable Shortcodes inside Widgets,Comments and Experts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.0.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

7.3CVSS0.00542EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/10/30 2:4 a.m.16 views

CVE-2024-9846 Enable Shortcodes inside Widgets,Comments and Experts <= 1.0.0 - Unauthenticated Arbitrary Shortcode Execution

The The Enable Shortcodes inside Widgets,Comments and Experts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.0.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

7.3CVSS7.6AI score0.00542EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/10/29 12:0 a.m.16 views

WordPress Enable Shortcodes inside Widgets,Comments and Experts Plugin <= 1.0.0 is vulnerable to Arbitrary Code Execution

Software Enable Shortcodes inside Widgets,Comments and Experts Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Arbitrary Code Execution CVE CVE-2024-9846 Patch priority High CVSS severity High 7.3 Developer Claim ownership PSID 5e00f716955b Credits...

7.3CVSS7AI score0.00542EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder