3 matches found
CVE-2024-33944
Missing Authorization vulnerability in Kestrel WooCommerce AWeber Newsletter Subscription.This issue affects WooCommerce AWeber Newsletter Subscription: from n/a through 4.0.2...
CVE-2024-33944
CVE-2024-33944 is a Missing Authorization vulnerability affecting the WooCommerce AWeber Newsletter Subscription plugin for WordPress, with affected range up to version 4.0.2. The connected RH/Red Hat entry reiterates the Missing Authorization issue for this product. Public details in the provide...
WordPress WooCommerce AWeber Newsletter Subscription Plugin <= 4.0.2 is vulnerable to Settings Change
Software WooCommerce AWeber Newsletter Subscription Type Plugin Vulnerable versions = 4.0.2 Fixed in 4.0.3 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2024-33944 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 016ccf61bb0f Credits Da...