cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-11709,https://securityvulnerability.io/vulnerability/CVE-2024-11709,Unauthorized Modification of Data in AI Post Generator AutoWriter plugin for WordPress,"The AI Post Generator | AutoWriter plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ai_post_generator_delete_Post AJAX action in all versions up to, and including, 3.5. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete arbitrary pages and posts.",Wordpress,Ai Post Generator | Autowriter,4.3,MEDIUM,0.0005300000193528831,false,,false,false,false,,false,false,2024-12-12T04:23:15.579Z,0
CVE-2024-1850,https://securityvulnerability.io/vulnerability/CVE-2024-1850,Unauthorized Access Vulnerability in AI Post Generator Plugin for WordPress,"The AI Post Generator | AutoWriter plugin for WordPress has a vulnerability that allows unauthorized access, modification, or deletion of posts. This flaw arises from a missing capability check on functions associated with AJAX actions across all versions up to and including 3.3. Consequently, authenticated attackers with subscriber access or higher can exploit this vulnerability to view all posts created with the plugin, even those that are unpublished. They can also create new posts, publish unpublished content, and delete existing posts without proper authorization.",Wordpress,Ai Post Generator | Autowriter,6.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:58:46.369Z,0