Lucene search
PatchstackCVE-2024-33585HistoryApr 29, 2024 - 1:15 p.m.
CVE-2024-33585
2024-04-2913:15:30
CWE-862
Patchstack
web.nvd.nist.gov
29
cve-2024-33585
missing authorization
tyche softwares
payment gateway
woocommerce
nvd
vulnerability
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Missing Authorization vulnerability in Tyche Softwares Payment Gateway Based Fees and Discounts for WooCommerce.This issue affects Payment Gateway Based Fees and Discounts for WooCommerce: from n/a through 2.12.1.
Affected configurations
Node
tyche_softwarespayment_gateway_based_fees_and_discounts_for_woocommerceRange≤2.12.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| tyche_softwares | payment_gateway_based_fees_and_discounts_for_woocommerce | * | cpe:2.3:a:tyche_softwares:payment_gateway_based_fees_and_discounts_for_woocommerce:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "checkout-fees-for-woocommerce",
"product": "Payment Gateway Based Fees and Discounts for WooCommerce",
"vendor": "Tyche Softwares",
"versions": [
{
"changes": [
{
"at": "2.12.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.12.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
vulnrichment
vulnrichment
cvelist
cvelist
nvd
nvd
CVE-2024-33585
2024-04-29 13:15:30
wordfence
wordfence
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-33585