cleantalk

Vulnerabilities and Security Researches

Security report for CVE Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media > CVE-2024-12071

CVE, Research URL

CVE-2024-12071

Home page URL

Security reports for Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media

Application

Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media

Published on
Jan 18, 2025
Research Description
The Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the delete_network_post() function in all versions up to, and including, 1.4.4. This makes it possible for unauthenticated attackers to delete arbitrary posts and pages.
Affected versions
Min -, max 1.4.5.
Status
vulnerable
Previous vulnerability researches
Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media (CVE-2024-12071) , Jan 19, 2025
Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media (CVE-2024-29099) , Jun 07, 2024
Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media (CVE-2023-41127) , Jun 07, 2024
Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media (CVE-2024-32824) , Jun 07, 2024
New vulnerability
Landing Page Cat – Coming Soon Page, Maintenance Page & Squeeze Pages (CVE-2025-24576) , Feb 05, 2025
SendPulse Email Marketing Newsletter (CVE-2025-22662) , Feb 05, 2025
Image Rotator (CVE-2025-25073) , Feb 05, 2025
WC Wallet (CVE-2025-23527) , Feb 05, 2025
Media Downloader (CVE-2025-24684) , Feb 05, 2025