CVE-2024-1170 | Post Form Plugin up to 2.8.7 on WordPress Media Deletion authorization

Inserito da Angelo Barbosa | Mar 7, 2024 | CVE

A vulnerability was found in Post Form Plugin up to 2.8.7 on WordPress and classified as critical. This issue affects some unknown processing of the component Media Deletion. The manipulation leads to missing authorization.

The identification of this vulnerability is CVE-2024-1170. The attack may be initiated remotely. There is no exploit available.

CVE-2024-1170 | Post Form Plugin up to 2.8.7 on WordPress Media Deletion authorization

Post correlati

CVE-2024-38675 | LOOS Arkhe Blocks Plugin up to 2.22.1 on WordPress cross site scripting

CVE-2024-23228 | Apple iOS/iPadOS up to 17.2 Locked Notes state issue

CVE-2024-37479 | LA-Studio Element Kit for Elementor Plugin up to 1.3.8.1 on WordPress LaStudioKit Progress Bar Widget progress_type file inclusion

CVE-2023-51097 | Tenda W9 1.0.0.7(4456)_CN formSetAutoPing stack-based overflow