Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Woffice WordPress Theme Vulnerabilities Could Lead to Full Site Takeovers
Malware and Vulnerabilities
December 14, 2024
Security Online
Patchstack identified two critical flaws in the Woffice Core plugin, which is required for the theme’s functionality. This includes a privilege escalation vulnerability (CVE-2024-43153) and an unauthenticated account takeover (CVE-2024-43234).
Read More
CVE-2024-43234
CVE-2024-43153
Privilege Escalation
Account Takeover
Broken Authentication
Publisher
Previous
Secure Email Gateways Fail to Stop Advanced Phishing Ca ...
Identity Theft, Fraud, Scams
Next
Citrix Strengthens Zero-Trust Security with Acquisition ...
Companies to Watch
/https://cyware-ent.s3.amazonaws.com/image_bank/a5dc_shutterstock_2314113313_1.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/c583_shutterstock_2153454253.jpg)
