remediation
Ultimate Member Vulnerability – Unauthenticated SQL Injection – CVE-2024-1071 | WordPress Plugin Vulnerability Report
Plugin Name: Ultimate Member Key Information: Software Type: Plugin Software Slug: ultimate-member Software Status: Active Software Author: ultimatemember Software Downloads: 9,722,132 Active Installs: 200,000 Last Updated: February 23, 2024 Patched Versions: 2.8.3 Affected Versions: 2.1.3 – 2.8.2 Vulnerability Details: Name: Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin 2.1.3 – 2.8.2 – Unauthenticated SQL Injection Type: Improper Neutralization of Special…
Read MoreGallery Plugin for WordPress – Envira Photo Gallery – Missing Authorization to Gallery Modification via envira_gallery_insert_images – CVE-2023-6742 | WordPress Plugin Vulnerability Report
Plugin Name: Gallery Plugin for WordPress – Envira Photo Gallery Key Information: Software Type: Plugin Software Slug: envira-gallery-lite Software Status: Active Software Author: smub Software Downloads: 5,197,570 Active Installs: 100,000 Last Updated: January 8, 2024 Patched Versions: 1.8.7.3 Affected Versions: <= 1.8.7.2 Vulnerability Details: Name: Envira Gallery Lite <= 1.8.7.2 Type: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE: CVE-2023-6742 CVSS…
Read More