CVE-2024-8427

CVSS V2 None CVSS V3 None
Description
The Frontend Post Submission Manager Lite – Frontend Posting WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_global_settings and process_form_edit functions in all versions up to, and including, 1.2.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the plugin's settings and forms.
Overview
  • CVE ID
  • CVE-2024-8427
  • Assigner
  • Wordfence
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-09-06T06:50:54.701Z
  • Last Modified Date
  • 2024-09-06T13:28:13.067Z
History
Created Old Value New Value Data Type Notes
2024-09-07 13:04:20 Added to TrackCVE