CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-11972

The Hunk Companion WordPress plugin before 1.9.0 does not correctly authorize some REST API endpoints, allowing unauthenticated requests to install and activate arbitrary Hunk Companion WordPress plugin before 1.9.0 from the WordPress.org repo, including vulnerable Hunk Companion WordPress plugin before 1.9.0 that have been closed.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.826

EPSS Ranking 99.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://wpscan.com/vulnerability/4963560b-e4ae-451d-8f94-482779c415e4/

Products affected by CVE-2024-11972

Themehunk » Hunk Companion » Version: N/A

cpe:2.3:a:themehunk:hunk_companion:-
Themehunk » Hunk Companion » Version: 1.2.2

cpe:2.3:a:themehunk:hunk_companion:1.2.2
Themehunk » Hunk Companion » Version: 1.5

cpe:2.3:a:themehunk:hunk_companion:1.5
Themehunk » Hunk Companion » Version: 1.5.1

cpe:2.3:a:themehunk:hunk_companion:1.5.1
Themehunk » Hunk Companion » Version: 1.5.2

cpe:2.3:a:themehunk:hunk_companion:1.5.2
Themehunk » Hunk Companion » Version: 1.5.3

cpe:2.3:a:themehunk:hunk_companion:1.5.3
Themehunk » Hunk Companion » Version: 1.5.4

cpe:2.3:a:themehunk:hunk_companion:1.5.4
Themehunk » Hunk Companion » Version: 1.5.5

cpe:2.3:a:themehunk:hunk_companion:1.5.5
Themehunk » Hunk Companion » Version: 1.5.6

cpe:2.3:a:themehunk:hunk_companion:1.5.6
Themehunk » Hunk Companion » Version: 1.5.7

cpe:2.3:a:themehunk:hunk_companion:1.5.7
Themehunk » Hunk Companion » Version: 1.5.9

cpe:2.3:a:themehunk:hunk_companion:1.5.9
Themehunk » Hunk Companion » Version: 1.6.0

cpe:2.3:a:themehunk:hunk_companion:1.6.0
Themehunk » Hunk Companion » Version: 1.6.1

cpe:2.3:a:themehunk:hunk_companion:1.6.1
Themehunk » Hunk Companion » Version: 1.6.10

cpe:2.3:a:themehunk:hunk_companion:1.6.10
Themehunk » Hunk Companion » Version: 1.6.11

cpe:2.3:a:themehunk:hunk_companion:1.6.11
Themehunk » Hunk Companion » Version: 1.6.12

cpe:2.3:a:themehunk:hunk_companion:1.6.12
Themehunk » Hunk Companion » Version: 1.6.14

cpe:2.3:a:themehunk:hunk_companion:1.6.14
Themehunk » Hunk Companion » Version: 1.6.2

cpe:2.3:a:themehunk:hunk_companion:1.6.2
Themehunk » Hunk Companion » Version: 1.6.3

cpe:2.3:a:themehunk:hunk_companion:1.6.3
Themehunk » Hunk Companion » Version: 1.6.4

cpe:2.3:a:themehunk:hunk_companion:1.6.4
Themehunk » Hunk Companion » Version: 1.6.5

cpe:2.3:a:themehunk:hunk_companion:1.6.5
Themehunk » Hunk Companion » Version: 1.6.6

cpe:2.3:a:themehunk:hunk_companion:1.6.6
Themehunk » Hunk Companion » Version: 1.6.8

cpe:2.3:a:themehunk:hunk_companion:1.6.8
Themehunk » Hunk Companion » Version: 1.6.9

cpe:2.3:a:themehunk:hunk_companion:1.6.9
Themehunk » Hunk Companion » Version: 1.7.0

cpe:2.3:a:themehunk:hunk_companion:1.7.0
Themehunk » Hunk Companion » Version: 1.7.1

cpe:2.3:a:themehunk:hunk_companion:1.7.1
Themehunk » Hunk Companion » Version: 1.7.2

cpe:2.3:a:themehunk:hunk_companion:1.7.2
Themehunk » Hunk Companion » Version: 1.7.3

cpe:2.3:a:themehunk:hunk_companion:1.7.3
Themehunk » Hunk Companion » Version: 1.7.4

cpe:2.3:a:themehunk:hunk_companion:1.7.4
Themehunk » Hunk Companion » Version: 1.7.5

cpe:2.3:a:themehunk:hunk_companion:1.7.5
Themehunk » Hunk Companion » Version: 1.7.6

cpe:2.3:a:themehunk:hunk_companion:1.7.6
Themehunk » Hunk Companion » Version: 1.8.0

cpe:2.3:a:themehunk:hunk_companion:1.8.0
Themehunk » Hunk Companion » Version: 1.8.1

cpe:2.3:a:themehunk:hunk_companion:1.8.1
Themehunk » Hunk Companion » Version: 1.8.2

cpe:2.3:a:themehunk:hunk_companion:1.8.2
Themehunk » Hunk Companion » Version: 1.8.4

cpe:2.3:a:themehunk:hunk_companion:1.8.4
Themehunk » Hunk Companion » Version: 1.8.5

cpe:2.3:a:themehunk:hunk_companion:1.8.5
Themehunk » Hunk Companion » Version: 1.8.6

cpe:2.3:a:themehunk:hunk_companion:1.8.6
Themehunk » Hunk Companion » Version: 1.8.7

cpe:2.3:a:themehunk:hunk_companion:1.8.7
Themehunk » Hunk Companion » Version: 1.8.8

cpe:2.3:a:themehunk:hunk_companion:1.8.8
Themehunk » Hunk Companion » Version: 1.8.9

cpe:2.3:a:themehunk:hunk_companion:1.8.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-11972

Products

Pricing

Contact Us