{"uuid": "d838a0b7-c574-42bd-89aa-c9f2ae576429", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12365", "type": "seen", "source": "https://t.me/brutsecurity/1306", "content": "CVE-2024-12365: Missing Authorization in W3 Total Cache WordPress Plugin, 8.5 rating\u2757\ufe0f\n\nThe vulnerability allows an authenticated attacker to access sensitive data and make unauthorized web requests to collect information from internal services.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/BpOAJ\n\ud83d\udc49 Dork: http.body:\"plugins/w3-total-cache\"\n\nRead more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/w3-total-cache/w3-total-cache-281-authenticated-subscriber-missing-authorization-to-server-side-request-forgery", "creation_timestamp": "2026-07-10T00:00:33.925323Z"}