CVE-2024-10548 | wedevs WP Project Manager Plugin up to 2.6.15 on WordPress Project Task List task-lists information disclosure

Posted by Angelo Barbosa | Dec 19, 2024 | CVE

A vulnerability classified as problematic has been found in wedevs WP Project Manager Plugin up to 2.6.15 on WordPress. This affects an unknown part of the file /wp-json/pm/v2/projects/1/task-lists of the component Project Task List. The manipulation leads to information disclosure.

This vulnerability is uniquely identified as CVE-2024-10548. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-10548 | wedevs WP Project Manager Plugin up to 2.6.15 on WordPress Project Task List task-lists information disclosure

Related Posts

CVE-2024-30983 | PHPGurukul Cyber Cafe Management System 1.0 edit-computer-detail.php compname sql injection

CVE-2023-50244 | LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623 Realtek rtl819x Jungle SDK formIpQoS entry_name stack-based overflow (TALOS-2023-1895)

CVE-2024-41019 | Linux Kernel up to 5.15.163/6.1.101/6.6.42/6.9.11/6.10.1 ntfs3 out-of-bounds

CVE-2024-7551 | juzaweb CMS up to 3.4.2 Theme Editor default path traversal