CVE-2024-12071

by Fred · 18/01/2025

The Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the delete_network_post() function in all versions up to, and including, 1.4.4. This makes it possible for unauthenticated attackers to delete arbitrary posts and pages.

More information : https://plugins.trac.wordpress.org/browser/evergreen-content-poster/trunk/admin/class-evergreen_content_poster-admin.php#L333

CVE-2024-12071

Similar

Recent Posts

Categories

CVE-2024-12071

Share this:

Similar

Recent Posts

Categories

Tags