Nouthemes Leopard Wordpress Offload Media vulnerabilities
3 known vulnerabilities affecting nouthemes/leopard_wordpress_offload_media.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-10589P2CRITICALCVSS 9.8≤ 3.1.12024-11-09
CVE-2024-10589 [CRITICAL] CWE-862 CVE-2024-10589: The Leopard - WordPress Offload Media plugin for WordPress is vulnerable to unauthorized modificatio
The Leopard - WordPress Offload Media plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the import_settings() function in all versions up to, and including, 3.1.1. This makes it possible for authenticated attackers, with Subscriber-level access and abo
nvd
CVE-2024-43256P3HIGHCVSS 7.1≥ n/a, ≤ 2.0.362024-08-19
CVE-2024-43256 [HIGH] CWE-862 CVE-2024-43256: Missing Authorization vulnerability in nouthemes Leopard - WordPress offload media allows Accessing
Missing Authorization vulnerability in nouthemes Leopard - WordPress offload media allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Leopard - WordPress offload media: from n/a through 2.0.36.
nvd
CVE-2024-43257P3MEDIUMCVSS 6.5≥ n/a, ≤ 2.0.362024-08-26
CVE-2024-43257 [MEDIUM] CWE-200 CVE-2024-43257: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Nouthemes Leopard - Word
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Nouthemes Leopard - WordPress offload media.This issue affects Leopard - WordPress offload media: from n/a through 2.0.36.
nvd