5 matches found
CVE-2024-24835
Missing Authorization vulnerability in realmag777 BEAR.This issue affects BEAR: from n/a through 1.1.4...
CVE-2024-24835 WordPress BEAR plugin <= 1.1.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in realmag777 BEAR.This issue affects BEAR: from n/a through 1.1.4...
CVE-2024-24835 WordPress BEAR plugin <= 1.1.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in realmag777 BEAR.This issue affects BEAR: from n/a through 1.1.4...
CVE-2024-24835
CVE-2024-24835 affects BEAR (WordPress BEAR plugin) up to version 1.1.4, with a Missing Authorization vulnerability due to insufficient permission checks in several functions. The issue allows authenticated users with subscriber-level access or higher to perform unauthorized actions on BEAR. The ...
WordPress BEAR Plugin <= 1.1.4 is vulnerable to Broken Access Control
Software BEAR Type Plugin Vulnerable versions = 1.1.4 Fixed in 1.1.4.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-24835 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 5d569bb55eee Credits Mika Required privilege Subscriber...