PT-2023-13715 · WordPress · Activecampaign For Woocommerce
Name of the Vulnerable Software and Affected Versions: ActiveCampaign for WooCommerce WordPress plugin versions prior to 1.9.8 Description: The issue concerns a lack of authorization check when cleaning up error logs via an AJAX action. This could allow any authenticated users, such as subscriber...