CVE-2024-12606 | opacewebdesign AI Scribe Plugin up to 2.3 on WordPress Setting engine_request_data authorization

Inserito da Angelo Barbosa | Gen 10, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in opacewebdesign AI Scribe Plugin up to 2.3 on WordPress. Affected by this issue is the function engine_request_data of the component Setting Handler. The manipulation leads to missing authorization.

This vulnerability is handled as CVE-2024-12606. The attack may be launched remotely. There is no exploit available.

CVE-2024-12606 | opacewebdesign AI Scribe Plugin up to 2.3 on WordPress Setting engine_request_data authorization

Post correlati

CVE-2024-5265 | WPBakery Page Builder Plugin up to 7.6 on WordPress VC Single Image Link Attribute cross site scripting

CVE-2024-0684 | GNU Coreutils split src/split.c heap-based overflow

CVE-2024-30603 | Tenda FH1203 2.0.1.6 saveParentControlInfo urls stack-based overflow

CVE-2023-48712 | warp-tech warpgate up to 0.8.x authorization (GHSA-c94j-vqr5-3mxr)