CVE-2024-8794 | BA Book Everything Plugin up to 1.6.20 on WordPress Password password recovery

Inserito da Angelo Barbosa | Set 23, 2024 | CVE

A vulnerability, which was classified as problematic, was found in BA Book Everything Plugin up to 1.6.20 on WordPress. This affects an unknown part of the component Password Handler. The manipulation leads to weak password recovery.

This vulnerability is uniquely identified as CVE-2024-8794. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-8794 | BA Book Everything Plugin up to 1.6.20 on WordPress Password password recovery

Post correlati

CVE-2024-23908 | Intel FPGA Software prior 11.19.5.0 Flexlm License Daemon insecure inherited permissions (intel-sa-01107)

CVE-2024-39882 | Delta Electronics CNCSoft-G2 2.0.0.5 out-of-bounds (icsa-24-191-01)

CVE-2024-30505 | Andy Moyle Church Admin Plugin up to 4.1.18 on WordPress Authorization authorization

CVE-2023-46914 | bookingcalendar Module up to 2.7.9 on PrestaShop ics_export.php information disclosure