Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-11-01 CVE-2024-43974 Missing Authorization vulnerability in Cozythemes Revivenews 1.0.0/1.0.1/1.0.2
Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2.
network
low complexity
cozythemes CWE-862
critical
9.8
2024-11-01 CVE-2024-43979 Missing Authorization vulnerability in Cozythemes Blockbooster
Missing Authorization vulnerability in CozyThemes Blockbooster allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blockbooster: from n/a through 1.0.10.
network
low complexity
cozythemes CWE-862
critical
9.8
2024-11-01 CVE-2024-43980 Missing Authorization vulnerability in Cozythemes Fotawp
Missing Authorization vulnerability in CozyThemes Fota WP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fota WP: from n/a through 1.4.1.
network
low complexity
cozythemes CWE-862
critical
9.8
2024-11-01 CVE-2024-43998 Missing Authorization vulnerability in Websiteinwp Blogpoet
Missing Authorization vulnerability in WebsiteinWP Blogpoet allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blogpoet: from n/a through 1.0.3.
network
low complexity
websiteinwp CWE-862
critical
9.8
2024-11-01 CVE-2024-44019 Missing Authorization vulnerability in Renzojohnson Contact Form 7 Campaign Monitor Extension
Missing Authorization vulnerability in Renzo Johnson Contact Form 7 Campaign Monitor Extension allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Contact Form 7 Campaign Monitor Extension: from n/a through 0.4.67.
network
low complexity
renzojohnson CWE-862
critical
9.8
2024-11-01 CVE-2024-44038 Missing Authorization vulnerability in Sunshinephotocart Sunshine Photo Cart
Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sunshine Photo Cart: from n/a through 3.2.9.
network
low complexity
sunshinephotocart CWE-862
critical
9.8
2024-11-01 CVE-2024-47302 Missing Authorization vulnerability in Wpmanageninja Fluent Support
Missing Authorization vulnerability in WPManageNinja LLC Fluent Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fluent Support: from n/a through 1.8.0.
network
low complexity
wpmanageninja CWE-862
critical
9.8
2024-11-01 CVE-2024-47308 Missing Authorization vulnerability in Templately
Missing Authorization vulnerability in Templately allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Templately: from n/a through 3.1.2.
network
low complexity
templately CWE-862
critical
9.8
2024-11-01 CVE-2024-47311 Missing Authorization vulnerability in Kraftplugins Wheel of Life
Missing Authorization vulnerability in Kraft Plugins Wheel of Life allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wheel of Life: from n/a through 1.1.8.
network
low complexity
kraftplugins CWE-862
critical
9.8
2024-11-01 CVE-2024-47321 Missing Authorization vulnerability in Androidbubbles WP Datepicker
Missing Authorization vulnerability in Fahad Mahmood WP Datepicker allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WP Datepicker: from n/a through 2.1.1.
network
low complexity
androidbubbles CWE-862
critical
9.8