Lucene search
K

6 matches found

Packet Storm News
Packet Storm News
added 2025/03/24 12:0 a.m.8 views

WordPress Pubnews 1.0.7 Arbitrary Plugin Installation

WordPress Pubnews theme versions 1.0.7 and below suffer from an unauthenticated arbitrary plugin installation vulnerability...

8.8CVSS7.2AI score0.01355EPSS
Exploits1
GithubExploit
GithubExploit
added 2025/03/23 9:42 p.m.273 views

Exploit for CVE-2024-10578

CVE-2024-10578: Pubnews = 1.0.7 - Unauthenticated Arbitrary P...

8.8CVSS7.1AI score0.01355EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2024/12/06 5:26 a.m.13 views

CVE-2024-10578 Pubnews <= 1.0.7 - Authenticated (Subscriber+) Arbitrary Plugin Installation

The Pubnews theme for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the pubnewsimporterpluginactionfornotice function in all versions up to, and including, 1.0.7. This makes it possible for authenticated attackers, with Subscriber-level...

8.8CVSS7.3AI score0.01355EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/12/06 5:26 a.m.28 views

CVE-2024-10578 Pubnews <= 1.0.7 - Authenticated (Subscriber+) Arbitrary Plugin Installation

The Pubnews theme for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the pubnewsimporterpluginactionfornotice function in all versions up to, and including, 1.0.7. This makes it possible for authenticated attackers, with Subscriber-level...

8.8CVSS0.01355EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.8 views

WordPress plugin Pubnews 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS8.1AI score0.01355EPSS
Exploits1References3
Patchstack
Patchstack
added 2024/12/05 10:20 p.m.8 views

WordPress Pubnews theme <= 1.0.7 - Unauthenticated Arbitrary Plugin Installation vulnerability

Unauthenticated Arbitrary Plugin Installation vulnerability discovered by Kevin Murphy knmurphy in WordPress Theme Pubnews versions = 1.0.7...

8.8CVSS7AI score0.01355EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder