Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2024-47318
- EPSS 0.41%
- Veröffentlicht 01.11.2024 15:15:54
- Zuletzt bearbeitet 12.11.2024 20:32:35
Missing Authorization vulnerability in Magazine3 PWA for WP & AMP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PWA for WP & AMP: from n/a through 1.7.72.
4.3
CVE-2021-4366
- EPSS 0.03%
- Veröffentlicht 07.06.2023 02:15:14
- Zuletzt bearbeitet 21.11.2024 06:37:31
The PWA for WP & AMP plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the pwaforwp_update_features_options function in versions up to, and including, 1.7.32. This makes it possible for authenticated att...
8.8
CVE-2021-4354
- EPSS 7.37%
- Veröffentlicht 07.06.2023 02:15:13
- Zuletzt bearbeitet 21.11.2024 06:37:29
The PWA for WP & AMP for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the pwaforwp_splashscreen_uploader function in versions up to, and including, 1.7.32. This makes it possible for authenticated attackers...
1