CVE-2024-5674 | Newsletter Plugin up to 2.4.5 on WordPress Email Subscribers Management authorization

Posted by Angelo Barbosa | Jun 12, 2024 | CVE

A vulnerability has been found in Newsletter Plugin up to 2.4.5 on WordPress and classified as critical. Affected by this vulnerability is an unknown functionality of the component Email Subscribers Management. The manipulation leads to missing authorization.

This vulnerability is known as CVE-2024-5674. The attack can be launched remotely. There is no exploit available.

CVE-2024-5674 | Newsletter Plugin up to 2.4.5 on WordPress Email Subscribers Management authorization

Related Posts

CVE-2024-47124 | goTenna Pro Series up to 1.6.1 Callsign cleartext transmission (icsa-24-270-04)

CVE-2024-24112 | xmall 1.1 orderDir sql injection (Issue 78)

CVE-2023-34007 | WPChill Download Monitor Plugin up to 4.8.3 on WordPress unrestricted upload

CVE-2024-9093 | SourceCodester Profile Registration without Reload Refresh 1.0 GET Parameter del.php list sql injection