CVE-2024-11082
- EPSS 8.85%
- Veröffentlicht 28.11.2024 10:15:05
- Zuletzt bearbeitet 28.11.2024 10:15:05
The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the hypeanimations_panel() function in all versions up to, and including, 1.9.15. This makes it possible for authenticated ...
CVE-2024-10543
- EPSS 0.23%
- Veröffentlicht 06.11.2024 07:15:04
- Zuletzt bearbeitet 08.11.2024 21:19:02
The Tumult Hype Animations plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the hypeanimations_getcontent function in all versions up to, and including, 1.9.14. This makes it possible for authenti...
CVE-2024-30460
- EPSS 0.13%
- Veröffentlicht 29.03.2024 17:15:18
- Zuletzt bearbeitet 21.11.2024 09:11:58
Cross-Site Request Forgery (CSRF) vulnerability in Tumult Inc Tumult Hype Animations.This issue affects Tumult Hype Animations: from n/a through 1.9.11.
CVE-2024-2890
- EPSS 0.35%
- Veröffentlicht 28.03.2024 07:16:13
- Zuletzt bearbeitet 21.11.2024 09:10:46
Unrestricted Upload of File with Dangerous Type vulnerability in Tumult Inc. Tumult Hype Animations.This issue affects Tumult Hype Animations: from n/a through 1.9.12.