CVE-2024-12559 | 1clickdesigns ClickDesigns Plugin up to 1.8.0 on WordPress clickdesigns_add_api/clickdesigns_remove_api authorization

Inserito da Angelo Barbosa | Gen 7, 2025 | CVE

A vulnerability classified as problematic has been found in 1clickdesigns ClickDesigns Plugin up to 1.8.0 on WordPress. Affected is the function clickdesigns_add_api/clickdesigns_remove_api. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2024-12559. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-12559 | 1clickdesigns ClickDesigns Plugin up to 1.8.0 on WordPress clickdesigns_add_api/clickdesigns_remove_api authorization

Post correlati

CVE-2024-34583 | Samsung Devices up to SMR Feb-2021 Release 1 System Property access control

CVE-2023-7006 | Sciener Firmware excessive authentication (VU#949046)

CVE-2024-1112 | Angus Johnson Resource Hacker 3.6.0.92 filename memory corruption

CVE-2024-6528 | Schneider Electric Modicon Controllers M262 cross site scripting (SEVD-2024-191-04)