Lucene search
K

4 matches found

Circl
Circl
added 2025/05/14 5:56 a.m.35 views

CVE-2025-4520

creationtimestamp| type| source ---|---|--- 2025-05-14 05:56:06+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lp4ctsa27uc2 2025-05-14 06:07:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lp4dip5uvv2h...

5.4CVSS7AI score0.00266EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/14 2:23 a.m.5 views

CVE-2025-4520 Uncanny Automator <= 6.4.0.2 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update

The Uncanny Automator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX functions in versions up to, and including, 6.4.0.2. This makes it possible for authenticated attackers, with subscriber-level permissions or above to...

5.4CVSS5.3AI score0.00266EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/14 2:23 a.m.48 views

CVE-2025-4520 Uncanny Automator <= 6.4.0.2 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update

The Uncanny Automator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX functions in versions up to, and including, 6.4.0.2. This makes it possible for authenticated attackers, with subscriber-level permissions or above to...

5.4CVSS0.00266EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/05/13 6:8 p.m.11 views

WordPress Uncanny Automator plugin <= 6.4.0.2 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update vulnerability

Missing Authorization to Authenticated Subscriber+ Plugin Settings Update vulnerability discovered by mikemyers in WordPress Plugin Uncanny Automator versions = 6.4.0.2...

5.4CVSS8.3AI score0.00266EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder