4 matches found
CVE-2024-32601
Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Popup Anything.This issue affects Popup Anything: from n/a through 2.8...
CVE-2024-32601
CVE-2024-32601 is a Missing Authorization vulnerability affecting WP OnlineSupport/Popup Anything until v2.8. The CVSS v3.1 base score is 5.3 (Network, Low attack complexity, No privileges required, No user interaction; Confidentiality impact Low). Exploitation status is not observed in the provi...
CVE-2024-32601 WordPress Popup Anything plugin <= 2.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Popup Anything.This issue affects Popup Anything: from n/a through 2.8...
WordPress Popup Anything Plugin <= 2.8 is vulnerable to Broken Access Control
Software Popup Anything Type Plugin Vulnerable versions = 2.8 Fixed in 2.8.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32601 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 740d15898275 Credits Steven Julian Required privilege...