2 matches found
CVE-2024-2384
The WooCommerce POS plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 1.4.11. This is due to the plugin not properly verifying the authentication and authorization of the current user This makes it possible for authenticated attackers, with...
WordPress WooCommerce POS Plugin <= 1.4.11 is vulnerable to Sensitive Data Exposure
Software WooCommerce POS Type Plugin Vulnerable versions = 1.4.11 Fixed in 1.4.12 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2384 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3a9aafe43482 Credits Lucio Sá Required...