2 matches found
CVE-2023-4943
The BEAR for WordPress is vulnerable to Missing Authorization in versions up to, and including, 1.1.3.3. This is due to a missing capability check on the woobebulkoperationsvisibility function. This makes it possible for authenticated attackers subscriber or higher to manipulate products...
CVE-2023-4943
CVE-2023-4943 : BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net is affected by Missing Authorization to Product Manipulation up to version 1.1.3.3 due to a missing capability check in woobe_bulkoperations_visibility. The vulnerability allows authenticated user...