Lucene search
K

46 matches found

Patchstack
Patchstack
added 2024/06/06 12:0 a.m.10 views

WordPress Ovic Importer Plugin <= 1.6.3 is vulnerable to Arbitrary File Download

Software Ovic Importer Type Plugin Vulnerable versions = 1.6.3 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Download CVE CVE-2024-35754 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID cc9fdc38f203 Credits Majed Refaea Required privile...

7.5CVSS6.5AI score0.00528EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/04/24 4:15 p.m.15 views

CVE-2024-32432

Missing Authorization vulnerability in Ovic Team Ovic Addon Toolkit.This issue affects Ovic Addon Toolkit: from n/a through 2.6.1...

4.3CVSS4.7AI score0.0046EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/24 3:38 p.m.19 views

CVE-2024-32432 WordPress Ovic Addon Toolkit plugin <= 2.6.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ovic Team Ovic Addon Toolkit.This issue affects Ovic Addon Toolkit: from n/a through 2.6.1...

4.3CVSS5AI score0.0046EPSS
Exploits0References1
CVE
CVE
added 2024/04/24 3:38 p.m.51 views

CVE-2024-32432

CVE-2024-32432 is a Missing Authorization vulnerability in the WordPress plugin Ovic Addon Toolkit , affecting versions up to 2.6.1 (vendor: Ovic). The CVE description and multiple trusted sources indicate a broken access control issue without detailing exploit vectors. Per NVD metrics, the CVSS ...

4.3CVSS5.2AI score0.0046EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/24 3:38 p.m.11 views

CVE-2024-32432 WordPress Ovic Addon Toolkit plugin <= 2.6.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ovic Team Ovic Addon Toolkit.This issue affects Ovic Addon Toolkit: from n/a through 2.6.1...

4.3CVSS6.9AI score0.0046EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/24 12:0 a.m.3 views

WordPress plugin Ovic Addon Toolkit 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS6.7AI score0.0046EPSS
Exploits0References2
NVD
NVD
added 2024/04/18 8:15 a.m.13 views

CVE-2024-32142

Missing Authorization vulnerability in Ovic Team Ovic Responsive WPBakery.This issue affects Ovic Responsive WPBakery: from n/a through 1.3.0...

5.4CVSS5.5AI score0.00387EPSS
Exploits0References1
CVE
CVE
added 2024/04/18 8:8 a.m.65 views

CVE-2024-32142

CVE-2024-32142 is described as a Missing Authorization vulnerability in Ovic Team Ovic Responsive WPBakery, affecting Ovic Responsive WPBakery from n/a through 1.3.0. The connected Red Hat advisory and Red Hat CVE description corroborate a Missing Authorization issue tied to this CVE ID. The Word...

5.4CVSS5.1AI score0.00387EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/18 8:8 a.m.13 views

CVE-2024-32142 WordPress Ovic Responsive WPBakery plugin <= 1.3.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ovic Team Ovic Responsive WPBakery.This issue affects Ovic Responsive WPBakery: from n/a through 1.3.0...

5.4CVSS6.9AI score0.00387EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/18 8:8 a.m.24 views

CVE-2024-32142 WordPress Ovic Responsive WPBakery plugin <= 1.3.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ovic Team Ovic Responsive WPBakery.This issue affects Ovic Responsive WPBakery: from n/a through 1.3.0...

5.4CVSS5.8AI score0.00387EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/18 12:0 a.m.6 views

WordPress Plugin Ovic Responsive WPBakery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.4CVSS6.5AI score0.00387EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/18 12:0 a.m.8 views

PT-2024-24438 · WordPress · Ovic Responsive Wpbakery

Name of the Vulnerable Software and Affected Versions: Ovic Responsive WPBakery versions 1.3.0 and earlier Description: The issue is related to a Missing Authorization vulnerability. This vulnerability affects Ovic Responsive WPBakery, allowing potential unauthorized access. Recommendations: For...

5.4CVSS6.4AI score0.00387EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/04/16 5:57 p.m.6 views

WordPress Ovic Responsive WPBakery plugin <= 1.3.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Skalucy Patchstack Alliance in WordPress Plugin Ovic Responsive WPBakery versions = 1.3.0...

5.4CVSS7AI score0.00387EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/16 12:0 a.m.14 views

WordPress Ovic Responsive WPBakery Plugin <= 1.3.0 is vulnerable to Broken Access Control

Software Ovic Responsive WPBakery Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32142 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID 35ffc13b78da Credits Skalucy Required...

5.4CVSS6.5AI score0.00387EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/12 3:21 p.m.3 views

WordPress Ovic Addon Toolkit plugin <= 2.6.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nguyen Xuan Chien Patchstack Alliance in WordPress Plugin Ovic Addon Toolkit versions = 2.6.1...

4.3CVSS7AI score0.0046EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/12 12:0 a.m.10 views

WordPress Ovic Addon Toolkit Plugin <= 2.6.1 is vulnerable to Broken Access Control

Software Ovic Addon Toolkit Type Plugin Vulnerable versions = 2.6.1 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32432 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7ad5ff183e69 Credits Nguyen Xuan Chien Required...

4.3CVSS6.6AI score0.0046EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/01/08 7:15 p.m.14 views

CVE-2023-5235

The Ovic Responsive WPBakery WordPress plugin before 1.2.9 does not limit which options can be updated via some of its AJAX actions, which may allow attackers with a subscriber+ account to update blog options, such as 'userscanregister' and 'defaultrole'. It also unserializes user input in the...

8.8CVSS8.8AI score0.0056EPSS
Exploits1References1
OSV
OSV
added 2024/01/08 7:15 p.m.7 views

CVE-2023-5235

The Ovic Responsive WPBakery WordPress plugin before 1.2.9 does not limit which options can be updated via some of its AJAX actions, which may allow attackers with a subscriber+ account to update blog options, such as 'userscanregister' and 'defaultrole'. It also unserializes user input in the...

8.8CVSS5.8AI score0.0056EPSS
Exploits1References1
Prion
Prion
added 2024/01/08 7:15 p.m.19 views

Design/Logic Flaw

The Ovic Responsive WPBakery WordPress plugin before 1.2.9 does not limit which options can be updated via some of its AJAX actions, which may allow attackers with a subscriber+ account to update blog options, such as 'userscanregister' and 'defaultrole'. It also unserializes user input in the...

6.5CVSS7.3AI score0.0056EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/08 7:0 p.m.18 views

CVE-2023-5235 Ovic Responsive WPBakery < 1.2.9 - Subscriber+ Option Update

The Ovic Responsive WPBakery WordPress plugin before 1.2.9 does not limit which options can be updated via some of its AJAX actions, which may allow attackers with a subscriber+ account to update blog options, such as 'userscanregister' and 'defaultrole'. It also unserializes user input in the...

7.3AI score0.0056EPSS
Exploits1References1
Rows per page
Query Builder