CVE-2024-1649 | Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxDeleteCategory authorization

Posted by Angelo Barbosa | Feb 27, 2024 | CVE

A vulnerability was found in Categorify Plugin up to 1.0.7.4 on WordPress and classified as critical. This issue affects the function categorifyAjaxDeleteCategory. The manipulation leads to missing authorization.

The identification of this vulnerability is CVE-2024-1649. The attack may be initiated remotely. There is no exploit available.

CVE-2024-1649 | Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxDeleteCategory authorization

Related Posts

CVE-2024-38573 | Linux Kernel up to 5.15.160/6.1.92/6.6.32/6.8.11/6.9.2 cppc_cpufreq_get_rate null pointer dereference

CVE-2024-42579 | Warehouse Inventory System 2.0 add_group.php cross-site request forgery

CVE-2024-0427 | ARForms Plugin up to 6.4.0 on WordPress cross site scripting

CVE-2024-33637 | Solid Plugins Solid Affiliate Plugin up to 1.9.1 on WordPress log file