CVE-2024-10674 | Th Shop Mania Plugin up to 1.4.9 on WordPress Plugin Installation access control

Posted by Angelo Barbosa | Nov 9, 2024 | CVE

A vulnerability has been found in Th Shop Mania Plugin up to 1.4.9 on WordPress and classified as critical. This vulnerability affects unknown code of the component Plugin Installation Handler. The manipulation leads to improper access controls.

This vulnerability was named CVE-2024-10674. The attack can be initiated remotely. There is no exploit available.

CVE-2024-10674 | Th Shop Mania Plugin up to 1.4.9 on WordPress Plugin Installation access control

Related Posts

CVE-2024-2873 | wolfSSL wolfSSH up to 1.4.16 Channel improper authentication

CVE-2023-51963 | Tenda AX1803 1.0.0.1 setIptvInfo vlan stack-based overflow

CVE-2024-47130 | goTenna Pro Series up to 1.6.1 Local Public Key missing authentication (icsa-24-270-04)

CVE-2024-29454 | ROS2 Humble Hawksbill improper authorization