The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init() function in all versions up to, and including, 4.0.11. This makes it possible for unauthenticated attackers to import the plugin's settings.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Wordfence
Published: 2024-02-07T11:02:38.853Z
Updated: 2024-02-07T11:02:38.853Z
Reserved: 2024-01-31T12:54:30.563Z
Link: CVE-2024-1110
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-07T11:15:09.040
Modified: 2024-02-10T04:13:13.260
Link: CVE-2024-1110
JSON object: View
Redhat Information
No data.
CWE