Aggregates CVE and security vulnerability intelligence across all adamsolymosi-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk csrf and related security problems, affecting vendor surface production workloads and vendor surface software deployment scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-6024 | The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when deleting groups or emails, which could allow attackers to make a logged in admin remove them via a CSRF attack | [email protected] | 8.8 | 0.27% | 2024-07-12 | 2025-05-15 |
| CVE-2024-6023 | The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when adding emails, which could allow attackers to make a logged in admin perform such action via a CSRF attack | [email protected] | 8.8 | 0.19% | 2024-07-12 | 2024-11-21 |
| CVE-2024-6022 | The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack | [email protected] | 8.8 | 0.29% | 2024-07-12 | 2024-11-21 |