2 matches found
CVE-2024-32948
CVE-2024-32948 corresponds to a Missing Authorization vulnerability in ARMember (Repute Infosystems) affecting ARMember up to version 4.0.28. The vulnerability is categorized as network-exploitable with no user interaction, enabling an attacker with no privileges to access or modify restricted re...
WordPress ARMember Plugin <= 4.0.28 is vulnerable to Broken Access Control
Software ARMember Type Plugin Vulnerable versions = 4.0.28 Fixed in 4.0.29 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32948 Patch priority High CVSS severity High 9.1 Developer Claim ownership PSID c0512654aaef Credits luc Required privilege...