6 matches found
CVE-2023-36506
Missing Authorization vulnerability in YITH YITH WooCommerce Waiting List allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects YITH WooCommerce Waiting List: from n/a through 2.13.0...
CVE-2023-36506
creationtimestamp| type| source ---|---|--- 2024-12-13 17:59:28+00:00| seen| https://infosec.exchange/users/cve/statuses/113646814335210251...
CVE-2023-36506 WordPress YITH WooCommerce Waitlist plugin <= 2.13.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in YITHEMES YITH WooCommerce Waiting List yith-woocommerce-waiting-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects YITH WooCommerce Waiting List: from n/a through = 2.13.0...
CVE-2023-36506
CVE-2023-36506 refers to a Missing Authorization vulnerability in the WordPress plugin YITH WooCommerce Waiting List . Affected are versions ≤ 2.13.0; the issue arises from broken/misconfigured access control that can be exploited by an unauthenticated attacker. The patch set fixes the vulnerabil...
CVE-2023-36506 WordPress YITH WooCommerce Waitlist plugin <= 2.13.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in YITH YITH WooCommerce Waiting List allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects YITH WooCommerce Waiting List: from n/a through 2.13.0...
WordPress YITH WooCommerce Waiting List Plugin <= 2.13.0 is vulnerable to Broken Access Control
Software YITH WooCommerce Waiting List Type Plugin Vulnerable versions = 2.13.0 Fixed in 2.13.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-36506 Patch priority Low CVSS severity Low 5.3 Developer YITH PSID d3cc24363c20 Credits thiennv Required privile...