CVE-2024-11615 | Envolve Plugin up to 1.0 on WordPress zetra_deleteLanguageFile/zetra_deleteFontsFile denial of service

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability was found in Envolve Plugin up to 1.0 on WordPress. It has been classified as critical. This affects the function zetra_deleteLanguageFile/zetra_deleteFontsFile. The manipulation leads to denial of service.

This vulnerability is uniquely identified as CVE-2024-11615. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-11615 | Envolve Plugin up to 1.0 on WordPress zetra_deleteLanguageFile/zetra_deleteFontsFile denial of service

Post correlati

CVE-2024-8344 | Campcodes Supplier Management System 1.0 /admin/edit_area.php id sql injection

CVE-2024-34025 | CyberPower PowerPanel up to 4.9.0 hard-coded password (icsa-24-123-01)

CVE-2024-55894 | TYPO3 up to 10.4.47/11.5.41/12.4.24/13.4.2 Backend User Module cross-site request forgery (GHSA-6w4x-gcx3-8p7v)

CVE-2024-42037 | Huawei HarmonyOS/EMUI Graphics Module uncaught exception