cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12263,https://securityvulnerability.io/vulnerability/CVE-2024-12263,Unauthorized Modification of Data in Child Theme Creator plugin for WordPress,"The Child Theme Creator by Orbisius plugin for WordPress is susceptible to unauthorized data modification due to a lack of capability checks on the cloud_delete() and cloud_update() functions. This vulnerability enables authenticated attackers, even those with Subscriber-level access, to manipulate cloud snippets, allowing them to perform updates and deletions. This security flaw resides within the Cloud Library Addon connected to the plugin, which has since been withdrawn. Users of affected versions are advised to take immediate precautions to secure their sites.",Wordpress,Child Theme Creator By Orbisius,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-12-12T05:24:25.112Z,0