CVE-2024-4886 | buddyboss-platform Plugin up to 2.5.x on WordPress ID authorization

Inserito da Angelo Barbosa | Giu 5, 2024 | CVE

A vulnerability classified as critical was found in buddyboss-platform Plugin up to 2.5.x on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation of the argument ID leads to authorization bypass.

This vulnerability is known as CVE-2024-4886. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4886 | buddyboss-platform Plugin up to 2.5.x on WordPress ID authorization

Post correlati

CVE-2024-24725 | Gibbon up to 26.0.00 POST Request import_run.php&type=externalAssessment&step=4 columnOrder deserialization (Exploit 51903 / EDB-51903)

CVE-2023-49236 | TRENDnet TV-IP1314PI 5.5.3 200714 RTSP Playback scale stack-based overflow

CVE-2022-48665 | Linux Kernel up to 5.19.11/6.0 exfat buffer overflow (17244f71765d/2e9ceb6728f1)

CVE-2022-27486 | Fortinet FortiDDoS/FortiDDoS-F os command injection (FG-IR-22-047)