3 matches found
CVE-2023-2276
The WCFM Membership – WooCommerce Memberships for Multivendor Marketplace plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 2.10.7. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization an...
CVE-2023-2276
The CVE-2023-2276 entry concerns the WCFM Membership – WooCommerce Memberships for Multivendor Marketplace WordPress plugin. Affected versions ≤ 2.10.7 are vulnerable to Insecure Direct Object References (IDOR), allowing unauthenticated attackers to access object resources and bypass authorizatio...
CVE-2023-2276
creationtimestamp| type| source ---|---|--- 2023-03-02 16:20:07+00:00| seen| https://t.me/truesecator/4124 2023-05-20 07:23:38+00:00| seen| https://t.me/cibsecurity/64480...