CVE-2024-43974

Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2...

WordPress ReviveNews Theme <= 1.0.2 is vulnerable to Broken Access Control

Software ReviveNews Type Theme Vulnerable versions = 1.0.2 Fixed in 1.0.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43974 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 47fb9a9aedf3 Credits Fariq Fadillah Gusti Insani...