4 matches found
CVE-2022-43450
Authorization Bypass Through User-Controlled Key vulnerability in XWP Stream.This issue affects Stream: from n/a through 3.9.2...
CVE-2022-43450
creationtimestamp| type| source ---|---|--- 2023-12-20 13:53:11+00:00| seen| https://t.me/ctinow/156980...
CVE-2022-43450
CVE-2022-43450 affects WordPress Stream plugin versions = 3.9.3. If upgrading, verify plugin version after patch to ensure the vulnerability is mitigated.
WordPress Stream Plugin <= 3.9.2 is vulnerable to Insecure Direct Object References (IDOR)
Software Stream Type Plugin Vulnerable versions = 3.9.2 Fixed in 3.9.3 OWASP Top 10 A1: Injection Classification Insecure Direct Object References IDOR CVE CVE-2022-43450 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 760a85c05111 Credits Lucio Sá Required privilege...