cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-6698,https://securityvulnerability.io/vulnerability/CVE-2024-6698,Privilege Escalation Vulnerability in FundEngine WordPress Plugin,"The FundEngine plugin for WordPress is susceptible to a privilege escalation vulnerability due to inadequate verification of user metadata. This flaw affects all versions up to and including 1.7.0, allowing authenticated attackers possessing subscriber-level access or higher to manipulate their user meta. By exploiting this vulnerability, attackers can enhance their capabilities, potentially gaining unauthorized administrator-level access to the WordPress site. It is critical for users of the FundEngine plugin to ensure they implement immediate measures to mitigate the risks associated with this vulnerability.",Wordpress,Fundengine – Donation And Crowdfunding Platform,8.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-08-01T03:29:58.918Z,0