CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-45832 – WordPress Attorney theme <= 3 - Unauth. Arbitrary Content Deletion vulnerability
https://notcve.org/view.php?id=CVE-2022-45832
01 Dec 2022 — Missing Authorization vulnerability in Hennessey Digital Attorney.This issue affects Attorney: from n/a through 3. Vulnerabilidad de falta de autorización en Hennessey Digital Attorney. Este problema afecta a Attorney: desde n/a hasta 3. The Attorney theme for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the hd_delete_index_page function hooked via admin_init in versions up to, and including, 3. This makes it possible for unauthenticated attackers to delete arbit... • https://patchstack.com/database/vulnerability/attorney/wordpress-attorney-theme-3-unauth-arbitrary-content-deletion-vulnerability?_s_id=cve • CWE-862: Missing Authorization •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2014-7471
https://notcve.org/view.php?id=CVE-2014-7471
19 Oct 2014 — The international-arbitration-attorney.com (aka com.w0f1d79a1010d819acbee876007d0bebc) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. La aplicación para Android international-arbitration-attorney.com (también conocido como com.w0f1d79a1010d819acbee876007d0bebc) 0.1 no verifica los certificados X.509 de los servidores SSL, lo que permite a atacantes man-in-th... • http://www.kb.cert.org/vuls/id/582497 • CWE-310: Cryptographic Issues •