CVE-2024-12202 | IronTemplates Croma Music Plugin up to 3.6 on WordPress ironMusic_ajax authorization

Inserito da Angelo Barbosa | Gen 7, 2025 | CVE

A vulnerability classified as very critical was found in IronTemplates Croma Music Plugin up to 3.6 on WordPress. This vulnerability affects the function ironMusic_ajax. The manipulation leads to missing authorization.

This vulnerability was named CVE-2024-12202. The attack can be initiated remotely. There is no exploit available.

CVE-2024-12202 | IronTemplates Croma Music Plugin up to 3.6 on WordPress ironMusic_ajax authorization

Post correlati

CVE-2024-25728 | ExpressVPN prior 12.73.0 on Windows Split Tunneling information disclosure

CVE-2024-32841 | Ivanti EPM 2024/up to 2022 SU5 sql injection

CVE-2024-29926 | HasThemes WC Builder Plugin up to 1.0.18 on WordPress cross site scripting

CVE-2024-37246 | Jethin Gallery Slideshow Plugin up to 1.4.1 on WordPress cross site scripting