4 matches found
CVE-2024-34822
Missing Authorization vulnerability in weDevs weMail.This issue affects weMail: from n/a through 1.14.2...
CVE-2024-34822 WordPress weMail plugin <= 1.14.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in weDevs weMail.This issue affects weMail: from n/a through 1.14.2...
CVE-2024-34822
CVE-2024-34822 is a Missing Authorization vulnerability in the weMail WordPress plugin (affected: weMail up to 1.14.2). Public sources (NVD, Red Hat, CVE listings, Vuln enrichment) classify the impact as a Medium Severity (CVSS v3.1 base 5.3) with no confidentiality impact, low integrity impact, ...
WordPress weMail Plugin <= 1.14.2 is vulnerable to Broken Access Control
Software weMail Type Plugin Vulnerable versions = 1.14.2 Fixed in 1.14.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-34822 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 0390ae236e1f Credits Dhabaleshwar Das Required privilege...