CVE-2024-8292 | WP-Recall Plugin up to 16.26.8 on WordPress Password resource injection

Inserito da Angelo Barbosa | Set 5, 2024 | CVE

A vulnerability has been found in WP-Recall Plugin up to 16.26.8 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Password Handler. The manipulation leads to improper control of resource identifiers.

This vulnerability is known as CVE-2024-8292. The attack can be launched remotely. There is no exploit available.

CVE-2024-8292 | WP-Recall Plugin up to 16.26.8 on WordPress Password resource injection

Post correlati

CVE-2024-46382 | linlinjava litemall 1.8.0 AdminGoodscontroller.java goodsId/goodsSn/name parameters sql injection (Issue 552)

CVE-2024-32524 | Nuggethon Custom Order Statuses for WooCommerce Plugin up to 1.5.2 on WordPress authorization

CVE-2024-45174 | za-internet C-MOR Video Surveillance 5.2401/6.00PL01 Web Interface sql injection (SYSS-2024-023)

CVE-2023-6735 | Checkmk up to 2.0.0p38/2.1.0p36/2.2.0p16 mk_tsm Agent Plugin input validation