2 matches found
CVE-2024-1352
CVE-2024-1352 affects the Classified Listing plugin for WordPress (Classified Listing – Classified ads & Business Directory Plugin) up to version 3.0.4. The root cause is a missing capability check in rtcl_import_location() and rtcl_import_category(), enabling authenticated users with subscriber-...
WordPress Classified Listing Plugin <= 3.0.4 is vulnerable to Broken Access Control
Software Classified Listing Type Plugin Vulnerable versions = 3.0.4 Fixed in 3.0.5 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1352 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 21a429c4da7b Credits Francesco Carlucci...