CyberAlerts

CVE-2024-9575

Local File Inclusion in pretix-widget WordPress plugin

Description: Local File Inclusion vulnerability in pretix Widget WordPress plugin pretix-widget on Windows allows PHP Local File Inclusion. This issue affects pretix Widget WordPress plugin: from 1.0.0 through 1.0.5.

CVSS: HIGH (8.5)

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (3 months ago)

CVE-2024-12848

SKT Page Builder <= 4.6 - Authenticated (Subscriber+) Arbitrary File Upload

Description: The SKT Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the 'addLibraryByArchive' function in all versions up to, and including, 4.6. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload arbitrary files that make remote code execution possible.

CVSS: HIGH (8.8)

EPSS Score: 0.07%

Source: CVE

January 10th, 2025 (3 months ago)

CVE-2024-12542

linkID <= 0.1.2 - Missing Authorization to Unauthenticated Sensitive Information Exposure

Description: The linkID plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check when including the 'phpinfo' function in all versions up to, and including, 0.1.2. This makes it possible for unauthenticated attackers to read configuration settings and predefined variables on the site's server. The plugin does not need to be activated for the vulnerability to be exploited.

CVSS: HIGH (8.6)

EPSS Score: 0.09%

Source: CVE

January 10th, 2025 (3 months ago)

CVE-2024-12330

WP Database Backup – Unlimited Database & Files Backup by Backup for WP <= 7.3 - Unauthenticated Database Back-Up Exposure

Description: The WP Database Backup – Unlimited Database & Files Backup by Backup for WP plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.3 via publicly accessible back-up files. This makes it possible for unauthenticated attackers to extract sensitive data including all information stored in the database.

CVSS: HIGH (7.5)

EPSS Score: 0.06%

Source: CVE

January 10th, 2025 (3 months ago)

CVE-2024-9939

WordPress File Upload <= 4.24.13 - Unauthenticated Path Traversal to Arbitrary File Read in wfu_file_downloader.php

Description: The WordPress File Upload plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 4.24.13 via wfu_file_downloader.php. This makes it possible for unauthenticated attackers to read files outside of the originally intended directory.

CVSS: HIGH (7.5)

EPSS Score: 0.09%

Source: CVE

January 9th, 2025 (3 months ago)

CVE-2024-12854

Garden Gnome Package <= 2.3.0 - Authenticated (Author+) Arbitrary File Upload

Description: The Garden Gnome Package plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the functionality that automatically extracts 'ggpkg' files that have been uploaded in all versions up to, and including, 2.3.0. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

CVSS: HIGH (8.8)

EPSS Score: 0.05%

Source: CVE

January 9th, 2025 (3 months ago)

CVE-2024-12853

Modula Image Gallery <= 2.11.10 - Authenticated (Author+) Arbitrary File Upload

Description: The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the zip upload functionality in all versions up to, and including, 2.11.10. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

CVSS: HIGH (8.8)

EPSS Score: 0.05%

Source: CVE

January 9th, 2025 (3 months ago)

CVE-2024-11939

Cost Calculator Builder PRO <= 3.2.15 - Unauthenticated SQL Injection via data

Description: The Cost Calculator Builder PRO plugin for WordPress is vulnerable to blind time-based SQL Injection via the ‘data’ parameter in all versions up to, and including, 3.2.15 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

CVSS: HIGH (7.5)

EPSS Score: 0.09%

Source: CVE

January 9th, 2025 (3 months ago)

CVE-2024-11916

The Ultimate WordPress Toolkit – WP Extended <= 3.0.11 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting

Description: The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to unauthorized modification and retrieval of data due to a missing capability check on several functions in all versions up to, and including, 3.0.11. This makes it possible for authenticated attackers, with subscriber-level access and above, to import and activate arbitrary code snippets along with

CVSS: HIGH (7.4)

EPSS Score: 0.05%

Source: CVE

January 9th, 2025 (3 months ago)

CVE-2024-11816

The Ultimate WordPress Toolkit – WP Extended <= 3.0.11 - Missing Authorization to Authenticated (Subscriber+) Remote Code Execution

Description: The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Remote Code Execution in version 3.0.11. This is due to a missing capability check on the 'wpext_handle_snippet_update' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to execute code on the server providing an admin has created at least one code snippet.

CVSS: HIGH (8.8)

EPSS Score: 0.06%

Source: CVE

January 9th, 2025 (3 months ago)

Threat and Vulnerability Intelligence Database

Example Searches: