Lucene search
K

8 matches found

NVD
NVD
added 2022/01/24 8:15 a.m.29 views

CVE-2021-24733

The WP Post Page Clone WordPress plugin before 1.2 allows users with a role as low as Contributor to clone and view other users' draft and password-protected posts which they cannot view normally...

4.3CVSS0.00783EPSS
Exploits2References1
OSV
OSV
added 2022/01/24 8:15 a.m.4 views

CVE-2021-24733

The WP Post Page Clone WordPress plugin before 1.2 allows users with a role as low as Contributor to clone and view other users' draft and password-protected posts which they cannot view normally...

4.3CVSS5.8AI score0.00783EPSS
Exploits2References1
Prion
Prion
added 2022/01/24 8:15 a.m.25 views

Default credentials

The WP Post Page Clone WordPress plugin before 1.2 allows users with a role as low as Contributor to clone and view other users' draft and password-protected posts which they cannot view normally...

4CVSS4.6AI score0.00783EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/01/24 8:0 a.m.30 views

CVE-2021-24733 WP Post Page Clone < 1.2 - Unauthorised Post Access

The WP Post Page Clone WordPress plugin before 1.2 allows users with a role as low as Contributor to clone and view other users' draft and password-protected posts which they cannot view normally...

4.9AI score0.00783EPSS
Exploits2References1
CVE
CVE
added 2022/01/24 8:0 a.m.60 views

CVE-2021-24733

CVE-2021-24733 pertains to the WordPress plugin WP Post Page Clone. Multiple sources confirm an access-control flaw in versions older than 1.2 that lets users with very low privileges (as low as Contributor) clone and view other users’ drafts and password‑protected posts that aren’t normally acce...

4.3CVSS4.5AI score0.00783EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2022/01/24 12:0 a.m.6 views

WordPress plugin 访问控制错误漏洞

WordPress is a set of blogging platforms developed by the WordPress Foundation using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. An access control error vulnerability exists in versions prior to Wordpress Plugin WP Post Page Clone...

4.3CVSS5.7AI score0.00783EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2020/04/25 12:0 a.m.9 views

Duplicate Page and Post < 2.5.7 & WP Post Page Clone < 1.1 - SQL Injections due to Duplicated Snippets

SQL Injections in the Duplicate Post, WP Post Page Clone, Duplicate Page and Post plugins, due to using the snippet piece of code. The issue in the duplicate-post was already added, at https://wpvulndb.com/vulnerabilities/9251...

0.2AI score
Exploits0References1Affected Software2
Patchstack
Patchstack
added 2020/04/24 12:0 a.m.10 views

WordPress WP Post Page Clone plugin <= 1.0 - SQL Injection (SQLi) vulnerability

SQL Injection SQLi vulnerability found by Antony Garand Sucuri in WordPress WP Post Page Clone plugin versions = 1.0. Solution Update the WordPress WP Post Page Clone plugin to the latest available version at least 1.1...

2AI score
Exploits0References2Affected Software1
Rows per page
Query Builder