5 matches found
CVE-2023-32299
Missing Authorization vulnerability in Anzar Ahmed Ni WooCommerce Sales Report ni-woocommerce-sales-report allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ni WooCommerce Sales Report: from n/a through = 3.7.3...
CVE-2023-32299
Missing Authorization vulnerability in Anzar Ahmed Ni WooCommerce Sales Report ni-woocommerce-sales-report allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ni WooCommerce Sales Report: from n/a through = 3.7.3...
CVE-2023-32299 WordPress Ni WooCommerce Sales Report plugin <= 3.7.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Anzar Ahmed Ni WooCommerce Sales Report ni-woocommerce-sales-report allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ni WooCommerce Sales Report: from n/a through = 3.7.3...
CVE-2023-32299
CVE-2023-32299 affects the WordPress plugin Ni WooCommerce Sales Report (Ni WooCommerce Sales Report) up to version 3.7.3, due to Missing Authorization / Broken Access Control. Attackers with subscriber-level privileges could exploit an improperly enforced access control to view sales data. The v...
WordPress Ni WooCommerce Sales Report Plugin <= 3.7.3 is vulnerable to Broken Access Control
Software Ni WooCommerce Sales Report Type Plugin Vulnerable versions = 3.7.3 Fixed in 3.7.4 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-32299 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 1d4eec1ef0ed Credits Jonas Höbenreic...