Lucene search

CVE-2024-5704

🗓️ 09 Jul 2024 09:07:15Reported by WordfenceType

XPlainer-WooCommerce Product FAQ plugin for WordPress has unauthorized data modification vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
Vulnrichment	CVE-2024-5704 XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] <= 1.6.4 - Missing Authorization to Authenticated (Subscriber+) Settings Update	9 Jul 202408:33	–	vulnrichment
Patchstack	WordPress XPlainer - WooCommerce Product FAQ Plugin <= 1.7.0 is vulnerable to Broken Access Control	9 Jul 202400:00	–	patchstack
Cvelist	CVE-2024-5704 XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] <= 1.6.4 - Missing Authorization to Authenticated (Subscriber+) Settings Update	9 Jul 202408:33	–	cvelist
NVD	CVE-2024-5704	9 Jul 202409:15	–	nvd
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 8, 2024 to July 14, 2024)	18 Jul 202415:33	–	wordfence

Vulners

Node

optemiz xplainer_woocommerce_product_faq_[woocommerce_accordion_faq_plugin]Range≤1.6.4wordpress

[
  {
    "vendor": "optemiz",
    "product": "XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin]",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "1.6.4",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/faq-for-woocommerce/trunk/includes/admin/faq-woocommerce-admin-functions.php
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/1d3e476d-0885-4e8c-a682-bd64d9f13b53
plugins	www.plugins.trac.wordpress.org/browser/faq-for-woocommerce/trunk/includes/admin/faq-woocommerce-admin-functions.php
plugins	www.plugins.trac.wordpress.org/browser/faq-for-woocommerce/trunk/includes/admin/faq-woocommerce-admin-functions.php
plugins	www.plugins.trac.wordpress.org/browser/faq-for-woocommerce/trunk/includes/admin/faq-woocommerce-admin-functions.php
plugins	www.plugins.trac.wordpress.org/browser/faq-for-woocommerce/trunk/includes/admin/faq-woocommerce-admin-functions.php

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jul 2024 09:15Current

4.5Medium risk

Vulners AI Score4.5

CVSS34.3

EPSS0.00212

SSVC