CVE-2024-0679 | ColorMag Plugin up to 3.1.2 on WordPress Plugin Installation authorization

Posted by Angelo Barbosa | Jan 19, 2024 | CVE

A vulnerability was found in ColorMag Plugin up to 3.1.2 on WordPress. It has been rated as critical. Affected by this issue is some unknown functionality of the component Plugin Installation Handler. The manipulation leads to missing authorization.

This vulnerability is handled as CVE-2024-0679. The attack may be launched remotely. There is no exploit available.

CVE-2024-0679 | ColorMag Plugin up to 3.1.2 on WordPress Plugin Installation authorization

Related Posts

CVE-2024-4668 | Gum Elementor Addon Plugin up to 1.3.4 on WordPress Price Table/Post Slider Widget cross site scripting

CVE-2024-37244 | Ninja Team Ninja Beaver Add-ons for Beaver Builder Plugin up to 2.4.5 on WordPress cross site scripting

CVE-2024-32025 | bmaltais kohya_ss up to 23.1.4 group_images_gui.py command injection (GHSA-qprv-9pg5-h33c)

CVE-2024-6230 | پلاگین پرداخت دلخواه Plugin up to 2.9.8 on WordPress Setting cross-site request forgery