Shodan
Vulnerabilities
Vulnerable Software
Northernbeacheswebsites:  >> Ideapush  Security Vulnerabilities
CVE-2025-24607
Missing Authorization vulnerability in Northern Beaches Websites IdeaPush ideapush allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IdeaPush: from n/a through <= 8.71.
CVSS Score
9.8
EPSS Score
0.002
Published
2025-02-14
CVE-2023-48774
Missing Authorization vulnerability in Northern Beaches Websites IdeaPush ideapush allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IdeaPush: from n/a through < 8.58.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-12-09
CVE-2024-11844
The IdeaPush plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the idea_push_taxonomy_save_routine function in all versions up to, and including, 8.71. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete terms for the "boards" taxonomy.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-12-03
CVE-2024-49275
Cross-Site Request Forgery (CSRF) vulnerability in Northern Beaches Websites IdeaPush ideapush allows Cross Site Request Forgery.This issue affects IdeaPush: from n/a through <= 8.69.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-10-20
CVE-2024-44041
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Northern Beaches Websites IdeaPush ideapush allows Stored XSS.This issue affects IdeaPush: from n/a through <= 8.66.
CVSS Score
5.9
EPSS Score
0.001
Published
2024-10-06
CVE-2024-37265
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.60.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-07-22
CVE-2024-37461
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.65.
CVSS Score
7.1
EPSS Score
0.003
Published
2024-07-21
CVE-2023-47181
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Martin Gibson IdeaPush plugin <= 8.52 versions.
CVSS Score
4.8
EPSS Score
0.002
Published
2023-11-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved