Lucene search
K

5 matches found

Patchstack
Patchstack
added 2026/02/17 11:58 p.m.8 views

WordPress Gutenberg Blocks with AI by Kadence WP plugin <= 3.6.1 - Missing Authorization to Authenticated (Contributor+) Unauthorized Media Upload vulnerability

Missing Authorization to Authenticated Contributor+ Unauthorized Media Upload vulnerability discovered by Ali Sünbül in WordPress Plugin Gutenberg Blocks by Kadence Blocks versions = 3.6.1...

4.3CVSS5.5AI score0.00327EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 5:30 a.m.14 views

CVE-2024-1169

The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions UGC plugin for WordPress is vulnerable to unauthorized media upload due to a missing capability check on the buddyformsuploadhandledroppedmedia function in all versions up to, and...

7.5CVSS6.7AI score0.0058EPSS
Exploits0References1
Prion
Prion
added 2024/03/07 11:15 a.m.23 views

Design/Logic Flaw

The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions UGC plugin for WordPress is vulnerable to unauthorized media upload due to a missing capability check on the buddyformsuploadhandledroppedmedia function in all versions up to, and...

5CVSS7AI score0.0058EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/07 11:1 a.m.17 views

CVE-2024-1169 Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) <= 2.8.7 - Missing Authorization to Unauthenticated Media Upload

The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions UGC plugin for WordPress is vulnerable to unauthorized media upload due to a missing capability check on the buddyformsuploadhandledroppedmedia function in all versions up to, and...

7.5CVSS7.1AI score0.0058EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/07 11:1 a.m.40 views

CVE-2024-1169 Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) <= 2.8.7 - Missing Authorization to Unauthenticated Media Upload

The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions UGC plugin for WordPress is vulnerable to unauthorized media upload due to a missing capability check on the buddyformsuploadhandledroppedmedia function in all versions up to, and...

7.5CVSS7.5AI score0.0058EPSS
Exploits0References3
Rows per page
Query Builder