CVE-2024-4900 – The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post …

CVE-2024-4900 – The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post …

Vuln ID: CVE-2024-4900

Published: 2024-06-24 06:15:11.423

Description: The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post settings, which could allow contributor and above role to perform Open redirect attacks against any user viewing a malicious post

Base Score: –

Vector:

Source: NVD.NIST.GOV

Date:

24 June 2024

Categorie(s):

Tag(s):

Donut Holes, clickfix, rapperbots, bad devs, war, Doug Rants about Backups, and More. – SWN #48720 June 2025
Jira tickets become attack vectors in PoC ‘living off AI’ attack20 June 2025
Anubis Ransomware Lists Disneyland Paris as New Victim20 June 2025
Hackers Target 700+ ComfyUI AI Image Generation Servers to Spread Malware20 June 2025
Netflix, Apple, BofA websites hijacked with fake help-desk numbers20 June 2025