- Description
- The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in versions 2.2.85 to 2.3.3. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on the site as an administrator.
- Source
- security@wordfence.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- security@wordfence.com
- CWE-269
- Hype score
- Not currently trending
WordPress ComboBlocks の脆弱性 CVE-2024-9636 が FIX:4万件のサイトが危険な状態に https://t.co/ELH4FfZknd ComboBlocks の脆弱性が FIX… https://t.co/9FuhYEOfkj
@iototsecnews
27 Jan 2025
28 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-9636: ComboBlocks WordPress Eklentisinde Kritik Güvenlik Açığı https://t.co/QwrBVbE8gk
@cyberwebeyeos
17 Jan 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-9636: Popular WordPress Plugin ComboBlocks Exposes Thousands of Sites to Complete Takeover https://t.co/9BNvoB7TGq
@Dinosn
17 Jan 2025
1554 Impressions
5 Retweets
16 Likes
4 Bookmarks
0 Replies
0 Quotes
CVE-2024-9636: Popular WordPress Plugin ComboBlocks Exposes Thousands of Sites to Complete Takeover Protect your WordPress website from a critical vulnerability (CVE-2024-9636). Learn how to secure your site and prevent complete takeover. https://t.co/kAXPdTCUut
@the_yellow_fall
17 Jan 2025
316 Impressions
1 Retweet
8 Likes
0 Bookmarks
1 Reply
0 Quotes
CVE-2024-9636 The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in versions 2.2.85 to 2.3.3. This is due to the plugin not properly restri… https://t.co/WsXdzPNUxP
@CVEnew
15 Jan 2025
108 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes