Lucene search

K
patchstackAbdi PranataPATCHSTACK:EE737DB56F526259075A2123318147D1
HistoryAug 09, 2024 - 12:00 a.m.

WordPress Send Emails with Mandrill Plugin <= 1.4.1 is vulnerable to Broken Access Control

2024-08-0900:00:00
Abdi Pranata
patchstack.com
wordpress send emails
mandrill plugin
broken access control
vulnerable
cve-2024-43208
low severity

AI Score

6.3

Confidence

High

EPSS

0

Percentile

9.9%

Software

Send Emails with Mandrill

Type

Plugin

Vulnerable versions

<= 1.4.1

Fixed in

1.4.2

OWASP Top 10

A1: Broken Access Control

Classification

Broken Access Control

CVE

CVE-2024-43208

Patch priority

Low

CVSS severity

Low (4.3)

Developer

Claim ownership

PSID

b4a893afe4e6

Credits

Abdi Pranata Abdi Pranata

Required privilege

Subscriber

Published

9 August, 2024

Remove and replace plugin Expand full details Have additional information or questions about this entry? Let us know.

Solution

This security issue has a low severity impact and is unlikely to be exploited.

Affected configurations

Vulners
Node
miller_media_\(_matt_miller_\)send_emails_with_mandrillRange1.4.1
VendorProductVersionCPE
miller_media_\(_matt_miller_\)send_emails_with_mandrill*cpe:2.3:a:miller_media_\(_matt_miller_\):send_emails_with_mandrill:*:*:*:*:*:*:*:*

AI Score

6.3

Confidence

High

EPSS

0

Percentile

9.9%

Related for PATCHSTACK:EE737DB56F526259075A2123318147D1