CVE-2024-11916 in Ultimate Toolkit Plugin
요약
\~에 의해 MITRE • 2025. 01. 08.
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification and retrieval of data due to a missing capability check on several functions in all versions up to, and including, 3.0.11. This makes it possible for authenticated attackers, with subscriber-level access and above, to import and activate arbitrary code snippets along with
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.