3 matches found
CVE-2018-11579
class-woo-banner-management.php in the MULTIDOTS WooCommerce Category Banner Management plugin 1.1.0 for WordPress has an Unauthenticated Settings Change Vulnerability, related to certain wpajaxnopriv usage. Anyone can change the plugin's setting by simply sending a request with a...
CVE-2018-11579
class-woo-banner-management.php in the MULTIDOTS WooCommerce Category Banner Management plugin 1.1.0 for WordPress has an Unauthenticated Settings Change Vulnerability, related to certain wpajaxnopriv usage. Anyone can change the plugin's setting by simply sending a request with a...
CVE-2018-11579
The CVE-2018-11579 entry concerns the WordPress plugin MULTIDOTS WooCommerce Category Banner Management (version 1.1.0). The vulnerability is an Unauthenticated Settings Change via wp_ajax_nopriv_ usage, allowing an attacker to change plugin settings by sending a request with the wbm_save_shop_pa...