CVE-2024-1178 | SportsPress Plugin up to 2.7.17 on WordPress Event Permalink Update authorization

Inserito da Angelo Barbosa | Mar 4, 2024 | CVE

A vulnerability was found in SportsPress Plugin up to 2.7.17 on WordPress. It has been classified as problematic. This affects an unknown part of the component Event Permalink Update Handler. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2024-1178. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1178 | SportsPress Plugin up to 2.7.17 on WordPress Event Permalink Update authorization

Post correlati

CVE-2024-24712 | Heateor Social Login Plugin up to 1.1.30 on WordPress Shortcode cross site scripting

CVE-2023-46052 | Sane 1.2.1 Config File init_options buffer overflow

CVE-2023-46841 | Xen Shadow Stack stack-based overflow

CVE-2023-50900 | Averta Master Slider Plugin up to 3.9.10 on WordPress cross-site request forgery