CVE-2024-10924 - Auth Bypass in Really Simple Security Plugins Lets Hackers Impersonate Any WordPress User
CVE-2024-10924 is a newly discovered vulnerability in the popular Really Simple Security plugins (Free, Pro, and Pro Multisite) for WordPress. This serious flaw affects versions
CVE-2024-10571 - Local File Inclusion (LFI) Flaw in Chartify – WordPress Chart Plugin
CVE-2024-10571 identifies a serious Local File Inclusion (LFI) vulnerability in the Chartify – WordPress Chart Plugin, affecting all versions up to and including 2.9.5.
CVE-2024-11150 - Arbitrary File Deletion in WordPress User Extra Fields Plugin (Up to 16.6) — Exploit Details, Code & Deep Dive
Summary:
CVE-2024-11150 is a critical vulnerability in the "User Extra Fields" WordPress plugin (versions up to and including 16.6). Due to poor
CVE-2024-10800 - Privilege Escalation in WordPress User Extra Fields Plugin – Explained
A new WordPress vulnerability—CVE-2024-10800—puts thousands of sites at immediate risk. This affects the popular User Extra Fields plugin, with over 10,000 active
CVE-2024-10828 - How Unauthenticated Attackers Can Delete Files (and More) in WooCommerce Sites with Advanced Order Export Plugin
*Posted: June 2024 | Category: WordPress Security, Zero-Day*
If you run a WooCommerce shop with the Advanced Order Export For WooCommerce plugin, this post might save
Episode
00:00:00
00:00:00