Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2024-12296
- EPSS 0.1%
- Veröffentlicht 12.02.2025 10:15:10
- Zuletzt bearbeitet 20.02.2025 16:09:14
The Apus Framework plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'import_page_options' function in all versions up to, and including, 2.3. This m...
9.8
CVE-2024-12213
- EPSS 0.15%
- Veröffentlicht 12.02.2025 10:15:08
- Zuletzt bearbeitet 20.02.2025 16:08:26
The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.2.76. This is due to the plugin allowing a user to supply the 'role' field when registering. This makes it possible for unauthenti...
5.4
CVE-2022-4114
- EPSS 0.14%
- Veröffentlicht 02.01.2023 22:15:16
- Zuletzt bearbeitet 10.04.2025 19:15:50
The Superio WordPress theme does not sanitise and escape some parameters, which could allow users with a role as low as a subscriber to perform Cross-Site Scripting attacks.
1