CVE-2024-8658 | wpexpertsio myCred Plugin up to 2.7.3 on WordPress mycred_update_database authorization

Posted by Angelo Barbosa | Sep 25, 2024 | CVE

A vulnerability has been found in wpexpertsio myCred Plugin up to 2.7.3 on WordPress and classified as problematic. This vulnerability affects the function mycred_update_database. The manipulation leads to missing authorization.

This vulnerability was named CVE-2024-8658. The attack can be initiated remotely. There is no exploit available.

CVE-2024-8658 | wpexpertsio myCred Plugin up to 2.7.3 on WordPress mycred_update_database authorization

Related Posts

CVE-2024-2059 | SourceCodester Petrol Pump Management Software 1.0 service_crud.php photo unrestricted upload

CVE-2024-7659 | projectsend up to r1605 Password Reset Token includes/functions.php generate_random_string random values

CVE-2024-43776 | Huachu Digital Technology Easytest Online Test Platform up to er.24E01 Mock Exam qlevel sql injection

CVE-2024-1664 | Responsive Gallery Grid Plugin up to 2.3.10 on WordPress Setting cross site scripting