CVE-2024-54311

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Dec 13, 2024
CWE ID 862

Summary

CVE-2024-54311 is a newly disclosed vulnerability affecting the i.lychkov Mark New Posts plugin. The issue involves a missing authorization control, enabling an attacker to exploit incorrectly configured access levels. This vulnerability can potentially be exploited to gain unauthorized access to protected functions within the plugin, posing a risk to WordPress sites running Mark New Posts versions from n/a to 7.5.1.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share