CVE-2024-9025 | Sight Plugin up to 1.1.2 on WordPress handler_post_title authorization

Inserito da Angelo Barbosa | Set 26, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Sight Plugin up to 1.1.2 on WordPress. This issue affects some unknown processing. The manipulation of the argument handler_post_title leads to missing authorization.

The identification of this vulnerability is CVE-2024-9025. The attack may be initiated remotely. There is no exploit available.

CVE-2024-9025 | Sight Plugin up to 1.1.2 on WordPress handler_post_title authorization

Post correlati

CVE-2024-30454 | VeronaLabs WP SMS Plugin up to 6.6.2 on WordPress cross-site request forgery

CVE-2024-25851 | Netis WF2780 2.1.40144 cgitest.cgi other_para config_sequence command injection

CVE-2024-6884 | Kadence Gutenberg Blocks with AI Plugin up to 3.2.38 on WordPress Post cross site scripting

CVE-2023-51612 | Kofax Power PDF JP2 File Parser use after free (ZDI-23-1913)