CVE-2024-11916 in Ultimate Toolkit Pluginالمعلومات

الملخص

بحسب MITRE • 08/01/2025

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification and retrieval of data due to a missing capability check on several functions in all versions up to, and including, 3.0.11. This makes it possible for authenticated attackers, with subscriber-level access and above, to import and activate arbitrary code snippets along with

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

حجز

27/11/2024

إفشاء

08/01/2025

الاعتدال

تمت الموافقة

إدخال

VDB-290558

EPSS

0.00207

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Want to know what is going to be exploited?

We predict KEV entries!