Carlosfazenda

carlosfazenda

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Page And Post Clone

page_and_post_clone

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-5942 1Carlosfazenda 1Page And Post Clone Apr 8, 2026 Jun 29, 2024 N/A· v4 5.4 MEDIUM· v3 N/A· v2 The Page and Post Clone plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.0 via the 'content_clone' function due to missing validation on a user controlled key...Show more The Page and Post Clone plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.0 via the 'content_clone' function due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Author-level access and above, to clone and read private posts.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-5942

1Carlosfazenda

1Page And Post Clone

Apr 8, 2026

Jun 29, 2024

N/A· v4

5.4 MEDIUM· v3

N/A· v2

The Page and Post Clone plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.0 via the 'content_clone' function due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Author-level access and above, to clone and read private posts.Show less