Lucene search
K

6 matches found

NVD
NVD
added 2024/12/13 3:15 p.m.13 views

CVE-2022-46796

Missing Authorization vulnerability in VillaTheme CURCY allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CURCY: from n/a through 2.1.25...

6.5CVSS0.00637EPSS
Exploits0References1
Circl
Circl
added 2024/12/13 2:59 p.m.11 views

CVE-2022-46796

creationtimestamp| type| source ---|---|--- 2024-12-13 14:59:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113646105704402889...

6.5CVSS6.9AI score0.00637EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/13 2:22 p.m.12 views

CVE-2022-46796 WordPress CURCY plugin <= 2.1.25 - Unauthenticated plugin settings change vulnerability

Missing Authorization vulnerability in VillaTheme CURCY woo-multi-currency allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CURCY: from n/a through = 2.1.25...

6.5CVSS7.3AI score0.00637EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/13 2:22 p.m.24 views

CVE-2022-46796 WordPress CURCY plugin <= 2.1.25 - Unauthenticated plugin settings change vulnerability

Missing Authorization vulnerability in VillaTheme CURCY allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CURCY: from n/a through 2.1.25...

6.5CVSS0.00637EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:22 p.m.42 views

CVE-2022-46796

CVE-2022-46796 affects the WordPress CURCY plugin (VillaTheme CURCY) up to version 2.1.25. The root cause is missing/broken authorization checks enabling unauthenticated users to change plugin settings (Broken Access Control). Reported impact is unauthenticated plugin settings changes, with CVSS ...

6.5CVSS8AI score0.00637EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/02/06 12:0 a.m.13 views

WordPress CURCY Plugin <= 2.1.25 is vulnerable to Broken Access Control

Software CURCY Type Plugin Vulnerable versions = 2.1.25 Fixed in 2.1.26 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2022-46796 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 1511c5726b64 Credits Muhammad Daffa Required privile...

6.3AI score0.00637EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder