CVE-2024-1851 | affiliate-toolkit Plugin up to 3.5.4 on WordPress atkp_create_list authorization

Inserito da Angelo Barbosa | Mar 7, 2024 | CVE

A vulnerability, which was classified as critical, was found in affiliate-toolkit Plugin up to 3.5.4 on WordPress. This affects the function atkp_create_list. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2024-1851. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1851 | affiliate-toolkit Plugin up to 3.5.4 on WordPress atkp_create_list authorization

Post correlati

CVE-2024-35773 | WPJohnny Comment Reply Email Plugin up to 1.3 on WordPress cross-site request forgery

CVE-2024-1130 | NEX-Forms Plugin up to 8.5.6 on WordPress set_read authorization

CVE-2024-32978 | Kaminari up to 0.16.1 default permission (GHSA-7r3j-qmr4-jfpj)

CVE-2024-45401 | stripe-cli up to 1.21.2 Manifest path traversal (GHSA-fv4g-gwpj-74gr)