CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-5858 – Infographic Maker iList <= 4.7.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Title Update
https://notcve.org/view.php?id=CVE-2024-5858
The AI Infographic Maker plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the qcld_openai_title_generate_desc AJAX action in all versions up to, and including, 4.7.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary post titles. El complemento AI Infographic Maker para WordPress es vulnerable a modificaciones no autorizadas de datos debido a una falta de verificación de capacidad en la acción qcld_openai_title_generate_desc AJAX en todas las versiones hasta la 4.7.4 incluida. Esto hace posible que atacantes autenticados, con acceso de nivel de suscriptor y superior, actualicen títulos de publicaciones arbitrarias. • https://plugins.trac.wordpress.org/browser/infographic-and-list-builder-ilist/trunk/qc-project-ilist-ajax.php?rev=3102295#L447 https://plugins.trac.wordpress.org/changeset/3102754/infographic-and-list-builder-ilist/trunk/qc-project-ilist-ajax.php https://www.wordfence.com/threat-intel/vulnerabilities/id/4c8f1c29-b99d-4af0-9cc4-5d6179529ab4?source=cve • CWE-862: Missing Authorization •
CVSS: 9.8EPSS: 7%CPEs: 1EXPL: 1CVE-2022-0747 – Infographic Maker - iList < 4.3.8 - Unauthenticated SQL Injection
https://notcve.org/view.php?id=CVE-2022-0747
The Infographic Maker WordPress plugin before 4.3.8 does not validate and escape the post_id parameter before using it in a SQL statement via the qcld_upvote_action AJAX action (available to unauthenticated and authenticated users), leading to an unauthenticated SQL Injection El plugin Infographic Maker de WordPress versiones anteriores a 4.3.8, no comprueba ni escapa del parámetro post_id antes de usarlo en una sentencia SQL por medio de la acción AJAX qcld_upvote_action (disponible para usuarios autenticados y no autenticados), conllevando a una inyección SQL no autenticada • https://plugins.trac.wordpress.org/changeset/2684336 https://wpscan.com/vulnerability/a8575322-c2cf-486a-9c37-71a22167aac3 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •