CVE-2024-31261 WordPress Announcer – Notification & message bars plugin <= 6.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Aakash Chakravarthy Announcer – Notification & message bars.This issue affects Announcer – Notification & message bars: from n/a through 6.0...

WordPress plugin Announcer security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

Announcer – Notification & message bars < 6.0.1 - Missing Authorization

Description The Announcer – Notification & message bars plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the adminajax function in versions up to, and including, 6.0. This makes it possible for authenticated attackers, with subscriber-level access and...

WordPress Announcer – Notification & message bars Plugin <= 6.0 is vulnerable to Broken Access Control

Software Announcer – Notification & message bars Type Plugin Vulnerable versions = 6.0 Fixed in 6.0.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-31261 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8628b9caa92f Credits Abdi...