3 matches found
CVE-2023-6638
The GTG Product Feed for Shopping plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'updatesettings' function in versions up to, and including, 1.2.4. This makes it possible for unauthenticated attackers to update plugin settings...
CVE-2023-6638
CVE-2023-6638 affects the GTG Product Feed for Shopping WordPress plugin (versions
WordPress GG Woo Feed for WooCommerce Plugin <= 1.2.4 is vulnerable to Broken Access Control
Software GG Woo Feed for WooCommerce Type Plugin Vulnerable versions = 1.2.4 Fixed in 1.2.5 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-6638 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 2cec2849f3e7 Credits István Márto...