3 matches found
CVE-2024-1176
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-1176
CVE-2024-1176 affects the HT Easy GA4 – Google Analytics WordPress Plugin. The vulnerability is a missing capability check in login() that enables unauthenticated modification of the GA4 email. Affected versions are all up to and including 1.1.5. Remediation: upgrade to 1.1.6 or later (Wordfence/...
WordPress HT Easy GA4 ( Google Analytics 4 ) Plugin <= 1.1.9 is vulnerable to Broken Access Control
Software HT Easy GA4 Google Analytics 4 Type Plugin Vulnerable versions = 1.1.9 Fixed in 1.2.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1176 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID e56dad603800 Credits Francesco...