CVE-2024-10909 | Pojo Forms Plugin up to 1.4.7 on WordPress Shortcode form_preview_shortcode Privilege Escalation

Inserito da Angelo Barbosa | Dic 6, 2024 | CVE

A vulnerability was found in Pojo Forms Plugin up to 1.4.7 on WordPress. It has been classified as critical. This affects the function form_preview_shortcode of the component Shortcode Handler. The manipulation leads to Privilege Escalation.

This vulnerability is uniquely identified as CVE-2024-10909. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-10909 | Pojo Forms Plugin up to 1.4.7 on WordPress Shortcode form_preview_shortcode Privilege Escalation

Post correlati

CVE-2024-39704 | Soft Circle French-Bread Melty Blood up to 1.4.0 Service Port 46318 Privilege Escalation

CVE-2024-26024 | Subnet Solutions Substation Server up to 2.23.10 reliance on uncontrolled component (icsa-24-128-02)

CVE-2024-30050 | Microsoft Windows up to Server 2022 23H2 Mark of the Web unknown vulnerability

CVE-2023-34087 | GTKWave 3.3.115 array index (TALOS-2023-1803)