Allaccessible Accessibility By Allaccessible vulnerabilities
2 known vulnerabilities affecting allaccessible/accessibility_by_allaccessible.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-11643P2HIGHCVSS 8.8≤ 1.3.42024-12-04
CVE-2024-11643 [HIGH] CWE-862 CVE-2024-11643: The Accessibility by AllAccessible plugin for WordPress is vulnerable to unauthorized modification o
The Accessibility by AllAccessible plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'AllAccessible_save_settings' function in all versions up to, and including, 1.3.4. This makes it possible for authenticated attackers, with Subscriber-level access an
nvd
CVE-2024-49644P3HIGHCVSS 8.8≤ 1.3.42025-01-07
CVE-2024-49644 [HIGH] CWE-266 CVE-2024-49644: Incorrect Privilege Assignment vulnerability in AllAccessible Accessibility by AllAccessible allacce
Incorrect Privilege Assignment vulnerability in AllAccessible Accessibility by AllAccessible allaccessible allows Privilege Escalation.This issue affects Accessibility by AllAccessible: from n/a through <= 1.3.4.
nvd