3 matches found
CVE-2024-8675
creationtimestamp| type| source ---|---|--- 2024-10-01 11:04:07+00:00| seen| https://t.me/cvedetector/6723...
CVE-2024-8675 Soumettre.fr <= 2.1.3 - Missing Authorization
The Soumettre.fr plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the soumettredisconnectgateway function in all versions up to, and including, 2.1.3. This makes it possible for authenticated attackers, with Subscriber-level access and...
WordPress Soumettre.fr Plugin <= 2.1.2 is vulnerable to Broken Access Control
Software Soumettre.fr Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-8675 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4522ceb2a73c Credits Peter Thaleikis Required privilege...