Authorization

The CMP for WordPress is vulnerable to authorization bypass due to a missing capability check on the cmpgetpostdetail, niteoexportcsv, and cmpdisablecomingsoonajax functions in versions up to, and including, 3.8.1. This makes it possible for unauthenticated attackers to read posts, export...

CVE-2019-25151

The CVE-2019-25151 issue affects the Funnel Builder plugin for WordPress, specifically versions up to and including 1.3.0. The root cause is a missing capability check in the activate_plugin function, which enables an authenticated attacker to bypass authorization and activate any plugin on the v...

CVE-2021-4375

The Welcart e-Commerce plugin for WordPress is affected by CVE-2021-4375 due to a missing capability check in the usces_download_system_information() function in versions up to 2.2.7. This enables authenticated attackers to download WordPress settings, plugin settings, PHP settings, and server se...

CVE-2021-4375 Welcart e-Commerce < 2.2.8 - Missing Capabilities Check to Information Disclosure

The Welcart e-Commerce plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the uscesdownloadsysteminformation function in versions up to, and including, 2.2.7. This makes it possible for authenticated attackers to download information including WordPres...

CVE-2023-3126

The CVE-2023-3126 entry concerns the WordPress plugin B2BKing . A missing capability check in the function b2bkingdownloadpricelist (affected versions: up to and including 4.6.00) allows authenticated users with subscriber/customer-level permissions to retrieve the site’s full product pricing lis...

CVE-2023-3126

The B2BKing plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'b2bkingdownloadpricelist' function in versions up to, and including, 4.6.00. This makes it possible for Authenticated attackers with subscriber or customer-level permissions to...

CVE-2023-3125 B2BKing <= 4.6.00 - Missing Authorization to Authenticated(Subscriber+) Price Modification

The B2BKing plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'b2bkingsavepriceimport' function in versions up to, and including, 4.6.00. This makes it possible for Authenticated attackers with subscriber or customer-level permissions...

CVE-2020-36719 ListingPro - WordPress Directory & Listing Theme < 2.6.1 - Arbitrary Plugin Installation, Activation and Deactivation

The ListingPro - WordPress Directory & Listing Theme for WordPress is vulnerable to Arbitrary Plugin Installation, Activation and Deactivation in versions before 2.6.1. This is due to a missing capability check on the lpccaddonsactions function. This makes it possible for unauthenticated attacker...

CVE-2020-36716

The CVE-2020-36716 entry concerns the WordPress WP Activity Log plugin. Affected component: the setup_page function; root cause is a missing capability check, leading to an authorization bypass. Impact: unauthenticated attackers could run the setup wizard (if not previously completed) and access ...

CVE-2021-4364

CVE-2021-4364 involves the WordPress plugin JobSearch WP Job Board . The vulnerability is an authorization bypass caused by a missing capability check in the function jobsearch_add_job_import_schedule_call() , affecting versions up to and including 1.8.1. This allows authenticated attackers to ad...

CVE-2021-4364 JobSearch WP Job Board < = 1.8.1 - Missing Authorization on jobsearch_update_job_import_schedule_call() function

The JobSearch WP Job Board plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the jobsearchaddjobimportschedulecall function in versions up to, and including, 1.8.1. This makes it possible for authenticated attackers to add and/or modify schedule calls...

CVE-2021-4362

The CVE-2021-4362 issue affects the Kiwi Social Share plugin for WordPress (version 2.1.0). The vulnerability is an authorization bypass caused by a missing capability check in the kiwi_social_share_get_option() function invoked via the kiwi_social_share_get_option AJAX action, allowing unauthent...

CVE-2021-4361

CVE-2021-4361 affects the WordPress plugin JobSearch WP Job Board. The vulnerability is an authorization bypass caused by a missing capability check on the AJAX action jobsearch_job_integrations_settin_save in versions up to and including 1.8.1. This allows authenticated attackers to update arbit...

CVE-2022-4948 FlyingPress <= 3.9.6 - Missing Authorization

The FlyingPress plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on its AJAX actions in versions up to, and including, 3.9.6. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to interact with the plugin in...

CVE-2021-4352 JobSearch WP Job Board <= 1.8.1 - Missing Authorization to Settings Change

The JobSearch WP Job Board plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the savelocsettings function in versions up to, and including, 1.8.1. This makes it possible for unauthenticated attackers to change the settings of the plugin...

CVE-2023-3124 Elementor Pro <= 3.11.6 - Authenticated(Subscriber+) Privilege Escalation via update_page_option

The Elementor Pro plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the updatepageoption function in versions up to, and including, 3.11.6. This makes it possible for authenticated attackers with subscriber-level capabilities to update...

CVE-2023-3124 Elementor Pro <= 3.11.6 - Authenticated(Subscriber+) Privilege Escalation via update_page_option

The Elementor Pro plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the updatepageoption function in versions up to, and including, 3.11.6. This makes it possible for authenticated attackers with subscriber-level capabilities to update...

CVE-2020-36697 WP GDPR <= 2.1.1 - Missing Authorization Checks

The WP GDPR plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in versions up to, and including, 2.1.1. This makes it possible for unauthenticated attackers to delete any comment and modify the plugin’s settings...

PT-2023-12440 · Woocommerce +1 · Improved Product Options For Woocommerce +15

Name of the Vulnerable Software and Affected Versions: Product Filter for WooCommerce versions prior to 8.2.0 Improved Product Options for WooCommerce versions prior to 5.3.0 Improved Sale Badges for WooCommerce versions prior to 4.4.0 Share, Print and PDF Products for WooCommerce versions prior ...

PT-2023-11872 · WordPress · Cmp

Name of the Vulnerable Software and Affected Versions: CMP for WordPress versions up to, and including, 3.8.1 Description: The issue is related to a missing capability check on the cmp get post detail, niteo export csv, and cmp disable comingsoon ajax functions. This allows unauthenticated...