Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2024-12296
- EPSS 0.09%
- Veröffentlicht 12.02.2025 10:15:10
- Zuletzt bearbeitet 08.04.2026 19:19:57
The Apus Framework plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'import_page_options' function in all versions up to, and including, 2.4. This m...
9.8
CVE-2024-12213
- EPSS 0.22%
- Veröffentlicht 12.02.2025 10:15:08
- Zuletzt bearbeitet 08.04.2026 18:19:42
The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to 2.3.16. This is due to the plugin allowing a user to supply the 'role' field when registering. This makes it possible for unauthenticated attackers ...
5.4
CVE-2022-4114
- EPSS 0.18%
- Veröffentlicht 02.01.2023 22:15:16
- Zuletzt bearbeitet 10.04.2025 19:15:50
The Superio WordPress theme does not sanitise and escape some parameters, which could allow users with a role as low as a subscriber to perform Cross-Site Scripting attacks.
1