Lucene search
HistoryMay 03, 2024 - 9:15 a.m.
CVE-2024-33931
authorization
vulnerability
ilghera jw player
wordpress
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Missing Authorization vulnerability in ilGhera JW Player for WordPress.This issue affects JW Player for WordPress: from n/a through 2.3.3.
Affected configurations
Node
ilgherawoocommerce_support_systemRangeβ€2.3.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ilghera | woocommerce_support_system | * | cpe:2.3:a:ilghera:woocommerce_support_system:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "jw-player-7-for-wp",
"product": "JW Player for WordPress",
"vendor": "ilGhera",
"versions": [
{
"changes": [
{
"at": "2.3.4",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.3.3",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-33931
2024-05-03 09:15:09
wpvulndb
wpvulndb
JW Player for WordPress <= 2.3.3 - Missing Authorization
2024-05-07 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
wordfence
wordfence
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-33931