Lucene search

[email protected]NVD:CVE-2024-31273

HistoryJun 09, 2024 - 12:15 p.m.

CVE-2024-31273

2024-06-0912:15:11

CWE-862

[email protected]

web.nvd.nist.gov

cve-2024-31273

missing authorization

js help desk

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

0.0004 Low

EPSS

Percentile

9.1%

JSON

Missing Authorization vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin.This issue affects JS Help Desk – Best Help Desk & Support Plugin: from n/a through 2.8.3.

References

patchstack.com/database/vulnerability/js-support-ticket/wordpress-js-help-desk-plugin-2-8-3-broken-access-control-vulnerability?_s_id=cve

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2024-31273

cvelist1 cve1 wpvulndb1 vulnrichment1 wordfence1