NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-38744

Summary	Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing Functionality Not Properly Constrained by ACLs, Stored XSS.This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0.
Publication Date	Nov. 2, 2024, 12:15 a.m.
Registration Date	Nov. 2, 2024, 5:01 a.m.
Last Update	Nov. 2, 2024, 12:15 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://patchstack.com/database/vulnerability/qodeblock/wordpress-plum-spin-wheel-email-pop-up-plugin-2-0-broken-access-control-to-unauth-stored-xss-vulnerability?_s_id=cve

Common Vulnerabilities List