WordPress plugin WholesaleX 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress WholesaleX plugin <= 1.3.2 - Unauthenticated Privilege Escalation vulnerability

Unauthenticated Privilege Escalation vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WholesaleX versions = 1.3.2...

WordPress WholesaleX Plugin <= 1.3.2 is vulnerable to Privilege Escalation

Software WholesaleX Type Plugin Vulnerable versions = 1.3.2 Fixed in 1.3.3 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2024-30542 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID cf4f19716a3e Credits Rafie Muhamm...

CVE-2024-30234 WordPress WholesaleX plugin <= 1.3.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Wholesale Team WholesaleX.This issue affects WholesaleX: from n/a through 1.3.1...

WordPress WholesaleX Plugin <= 1.3.1 is vulnerable to Sensitive Data Exposure

Software WholesaleX Type Plugin Vulnerable versions = 1.3.1 Fixed in 1.3.2 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-30233 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID fd8f60a8b6dc Credits Emili Castells Required...