CVE-2024-10689 | webangon XLTab Plugin up to 1.4 on WordPress Shortcode XLTAB_INSERT_TPL authorization

Inserito da Angelo Barbosa | Dic 6, 2024 | CVE

A vulnerability was found in webangon XLTab Plugin up to 1.4 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function XLTAB_INSERT_TPL of the component Shortcode Handler. The manipulation leads to authorization bypass.

This vulnerability is known as CVE-2024-10689. The attack can be launched remotely. There is no exploit available.

CVE-2024-10689 | webangon XLTab Plugin up to 1.4 on WordPress Shortcode XLTAB_INSERT_TPL authorization

Post correlati

CVE-2024-4523 | Campcodes Complete Web-Based School Management System 1.0 teacher_attendance_history1.php year cross site scripting

CVE-2021-47494 | Linux Kernel up to 5.10.76/5.14.15 cfg80211 cfg80211_mgmt_registrations_update memory corruption (4c22227e39c7/3c897f39b71f/09b1d5dc6ce1)

CVE-2024-49636 | Prashant Mavinkurve Agile Video Player Lite Plugin up to 1.0 on WordPress cross site scripting

CVE-2024-8350 | Uncanny Groups for LearnDash Plugin up to 6.1.0.1 on WordPress User Group Add authorization