CVE-2024-1385 | WP-Stateless Plugin up to 3.4.0 on WordPress Options Update authorization

Posted by Angelo Barbosa | Apr 5, 2024 | CVE

A vulnerability, which was classified as critical, was found in WP-Stateless Plugin up to 3.4.0 on WordPress. This affects an unknown part of the component Options Update Handler. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2024-1385. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1385 | WP-Stateless Plugin up to 3.4.0 on WordPress Options Update authorization

Related Posts

CVE-2024-10683 | Contact Form 7 Plugin up to 2.3.1 on WordPress cross site scripting

CVE-2023-36381 | Gesundheit Bewegt Zippy Plugin up to 1.6.5 on WordPress deserialization

CVE-2023-6173 | TeoSOFT TeoBASE up to 27032024 sql injection

CVE-2023-5938 | Nozomi Networks Arc up to 1.5.x ZIP path traversal