CVE-2024-11355 | codelizarplugs Ultimate YouTube Video & Shorts Player With Vimeo Plugin Setting get_setting authorization

Posted by Angelo Barbosa | Nov 22, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in codelizarplugs Ultimate YouTube Video & Shorts Player With Vimeo Plugin up to 3.3 on WordPress. This issue affects the function get_setting of the component Setting Handler. The manipulation leads to missing authorization.

The identification of this vulnerability is CVE-2024-11355. The attack may be initiated remotely. There is no exploit available.

CVE-2024-11355 | codelizarplugs Ultimate YouTube Video & Shorts Player With Vimeo Plugin Setting get_setting authorization

Related Posts

CVE-2024-25898 | ChurchCRM 5.5.0 EventEditor.php Event Sermon cross site scripting

CVE-2023-47560 | QNAP QuMagie prior 2.2.1 command injection (qsa-23-23)

CVE-2024-44893 | jeecg-boot JimuReport 1.7.8 GET Request list Privilege Escalation

CVE-2024-29271 | VvvebJs up to 1.7.6 save.php action cross site scripting (Issue 342)