Contentlock

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:adamsolymosi:contentlock:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

VendorAdamsolymosi (efe25a1b-174f-5a1c-9cc7-5dea532839db)
ProductContentlock (f19ef7e9-7032-52ac-9b23-41ae609191c6)
Edition*
Language*
Software edition*
Target softwarewordpress
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-6024 vulnerable 2026-06-03 14:58:01.469926 ContentLock <= 1.0.3 - Groups/Emails Deletion via CSRF
The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when deleting groups or emails, which could allow attackers to make a logged in admin remove them via a CSRF attack
Published: 2024-07-12T06:00:07.258Z
Updated: 2024-08-01T21:25:03.203Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-6023 vulnerable 2026-06-03 14:58:01.467279 ContentLock <= 1.0.3 - Email Adding via CSRF
The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when adding emails, which could allow attackers to make a logged in admin perform such action via a CSRF attack
Published: 2024-07-12T06:00:06.958Z
Updated: 2024-08-01T21:25:03.160Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-6022 vulnerable 2026-06-03 14:58:01.466572 ContentLock <= 1.0.3 - Settings Update via CSRF
The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
Published: 2024-07-12T06:00:06.639Z
Updated: 2024-08-01T21:25:03.198Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.