CVE-2024-4010 | Icegram Express Email Subscribers Plugin up to 5.7.19 on WordPress handle_ajax_request authorization

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability was found in Icegram Express Email Subscribers Plugin up to 5.7.19 on WordPress and classified as critical. This issue affects the function handle_ajax_request. The manipulation leads to missing authorization.

The identification of this vulnerability is CVE-2024-4010. The attack may be initiated remotely. There is no exploit available.

CVE-2024-4010 | Icegram Express Email Subscribers Plugin up to 5.7.19 on WordPress handle_ajax_request authorization

Related Posts

CVE-2022-48618 | Apple macOS improper authentication

CVE-2023-48171 | OWASP DefectDojo up to 1.5.3.0 permission

CVE-2024-29726 | SportsNET 4.0.1 /app/ax/setAsRead/ id sql injection

CVE-2024-23519 | M&S Consulting Email Before Download Plugin up to 6.9.7 on WordPress cross-site request forgery