Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
ConvertplugConvertplus

2 matches found

CVE
CVEadded 2019/09/03 11:41 a.m.61 views

CVE-2019-15863

CVE-2019-15863 affects the WordPress ConvertPlus plugin prior to version 3.4.5. The vulnerability allows unintended account creation (with the none role) via a request for variants, enabling an unauthorized user to create accounts through the plugin’s variant request flow. Impact is user creation...

7.5CVSS7.5AI score0.00389EPSS
CVE
CVEadded 2025/02/12 4:22 a.m.57 views

CVE-2024-13800

The CVE-2024-13800 entry concerns the WordPress ConvertPlus plugin. A missing capability check on the cp_dismiss_notice AJAX endpoint allows authenticated users with Subscriber-level access and above to perform unauthorized modifications of data, enabling updates to option values (to '1') that ca...

8.1CVSS7.7AI score0.00082EPSS