WordPress RevivePress – Keep your Old Content Evergreen plugin <= 1.5.8 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin RevivePress versions = 1.5.8...

EUVD-2024-17569

Malicious code in bioql PyPI...

CVE-2024-1844

The RevivePress – Keep your Old Content Evergreen plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the importdata and copydata functions in all versions up to, and including, 1.5.6. This makes it possible for authenticated...

WordPress RevivePress Plugin <= 1.5.6 is vulnerable to Broken Access Control

Software RevivePress Type Plugin Vulnerable versions = 1.5.6 Fixed in 1.5.6.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1844 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1928554db9aa Credits Lucio Sá Required privilege...

WordPress Plugin RevivePress Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...