The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init() function in all versions up to, and including, 4.0.11. This makes it possible for unauthenticated attackers to import the plugin's settings.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Wordfence
Published: 2024-02-07T11:02:38.853Z
Updated: 2024-08-01T18:26:30.494Z
Reserved: 2024-01-31T12:54:30.563Z
Link: CVE-2024-1110
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-02-07T11:15:09.040
Modified: 2024-11-21T08:49:49.130
Link: CVE-2024-1110
Redhat
No data.