cve/CVE-2024-0237.md at 71b0cee710ed54e668d68c977dc8a01eece35241

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 03:02:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The EventON WordPress plugin through 4.5.8, EventON WordPress plugin before 2.2.7 do not have authorisation in some AJAX actions, allowing unauthenticated users to update virtual events settings, such as meeting URL, moderator, access details etc

POC

Reference

https://wpscan.com/vulnerability/73d1b00e-1f17-4d9a-bfc8-6bc43a46b90b/

Github

https://github.com/fkie-cad/nvd-json-data-feeds

887 B Raw Blame History

CVE-2024-0237

Description

POC

Reference

Github

887 B

Raw Blame History