Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-01 | CVE-2024-43968 | Missing Authorization vulnerability in Newspack Broken Access Control vulnerability in Automattic Newspack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Newspack: from n/a through 3.8.6. | 8.8 |
| 2024-11-01 | CVE-2024-43973 | Missing Authorization vulnerability in Ayecode Getpaid Missing Authorization vulnerability in AyeCode Ltd GetPaid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GetPaid: from n/a through 2.8.11. | 8.8 |
| 2024-11-01 | CVE-2024-43974 | Missing Authorization vulnerability in Cozythemes Revivenews 1.0.0/1.0.1/1.0.2 Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2. | 9.8 |
| 2024-11-01 | CVE-2024-43979 | Missing Authorization vulnerability in Cozythemes Blockbooster Missing Authorization vulnerability in CozyThemes Blockbooster allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blockbooster: from n/a through 1.0.10. | 9.8 |
| 2024-11-01 | CVE-2024-43980 | Missing Authorization vulnerability in Cozythemes Fotawp Missing Authorization vulnerability in CozyThemes Fota WP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fota WP: from n/a through 1.4.1. | 9.8 |
| 2024-11-01 | CVE-2024-43981 | Missing Authorization vulnerability in Ayecode Geodirectory Missing Authorization vulnerability in AyeCode – WP Business Directory Plugins GeoDirectory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GeoDirectory: from n/a through 2.3.70. | 8.8 |
| 2024-11-01 | CVE-2024-43982 | Missing Authorization vulnerability in Geekcodelab Login AS Users Missing Authorization vulnerability in Geek Code Lab Login As Users allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Login As Users: from n/a through 1.4.3. | 8.8 |
| 2024-11-01 | CVE-2024-43998 | Missing Authorization vulnerability in Websiteinwp Blogpoet Missing Authorization vulnerability in WebsiteinWP Blogpoet allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blogpoet: from n/a through 1.0.3. | 9.8 |
| 2024-11-01 | CVE-2024-44006 | Missing Authorization vulnerability in Onthegosystems Woocommerce Multilingual & Multicurrency Missing Authorization vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency multilingual allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through 5.3.6. | 8.8 |
| 2024-11-01 | CVE-2024-44019 | Missing Authorization vulnerability in Renzojohnson Contact Form 7 Campaign Monitor Extension Missing Authorization vulnerability in Renzo Johnson Contact Form 7 Campaign Monitor Extension allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Contact Form 7 Campaign Monitor Extension: from n/a through 0.4.67. | 9.8 |