CVE-2024-1637 | 360 Javascript Viewer Plugin up to 1.7.12 on WordPress Settings Update authorization

Posted by Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability was found in 360 Javascript Viewer Plugin up to 1.7.12 on WordPress and classified as critical. Affected by this issue is some unknown functionality of the component Settings Update Handler. The manipulation leads to missing authorization.

This vulnerability is handled as CVE-2024-1637. The attack may be launched remotely. There is no exploit available.

CVE-2024-1637 | 360 Javascript Viewer Plugin up to 1.7.12 on WordPress Settings Update authorization

Related Posts

CVE-2024-21748 | Icegram Plugin up to 3.1.21 on WordPress authorization

CVE-2024-7424 | Multiple Page Generator Plugin up to 4.0.1 on WordPress authorization

CVE-2024-22593 | FlyCMS 1.0 add_group_save cross-site request forgery

CVE-2024-2475 | Media Library Assistant Plugin up to 3.13 on WordPress Shortcode mla_gallery cross site scripting