CVE-2024-13428 | wpjobportal WP Job Portal Plugin up to 2.2.6 on WordPress deleteCompanyLogo authorization

Inserito da Angelo Barbosa | Feb 1, 2025 | CVE

A vulnerability was found in wpjobportal WP Job Portal Plugin up to 2.2.6 on WordPress. It has been classified as problematic. Affected is the function deleteCompanyLogo. The manipulation leads to authorization bypass.

This vulnerability is traded as CVE-2024-13428. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-13428 | wpjobportal WP Job Portal Plugin up to 2.2.6 on WordPress deleteCompanyLogo authorization

Post correlati

CVE-2023-48419 | Google Nest Mini 1.56.356012 WiFi privileges management

CVE-2024-39019 | idcCMS 1.35 idcProData_deal.php cross-site request forgery

CVE-2024-9226 | fatcatapps Landing Page Cat Plugin up to 1.7.6 on WordPress add_query_arg cross site scripting

CVE-2023-49078 | zediious raptor-web 0.4.4 Link cross site scripting (GHSA-8r6g-fhh4-xhmq)