CVE-2024-8520 | Ultimate Member Plugin up to 2.8.6 on WordPress Membership Status cross-site request forgery

Inserito da Angelo Barbosa | Ott 3, 2024 | CVE

A vulnerability classified as problematic has been found in Ultimate Member Plugin up to 2.8.6 on WordPress. This affects an unknown part of the component Membership Status Handler. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-8520. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-8520 | Ultimate Member Plugin up to 2.8.6 on WordPress Membership Status cross-site request forgery

Post correlati

CVE-2024-23196 | Linux Kernel up to 6.4 HDA Device Driver snd_hdac_regmap_sync null pointer dereference

CVE-2023-37058 | Jlink AX1800 1.0 permission

CVE-2024-23739 | Discord up to 0.0.291 on macOS Setting RunAsNode/enableNodeClilnspectArguments Privilege Escalation

CVE-2024-24822 | Pimcore admin-ui-classic-bundle up to 1.3.2 authorization