5 matches found
CVE-2024-35168
Missing Authorization vulnerability in Discourse WP Discourse.This issue affects WP Discourse: from n/a through 2.5.1...
CVE-2024-35168 WordPress WP Discourse plugin <= 2.5.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Discourse WP Discourse.This issue affects WP Discourse: from n/a through 2.5.1...
CVE-2024-35168 WordPress WP Discourse plugin <= 2.5.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Discourse WP Discourse.This issue affects WP Discourse: from n/a through 2.5.1...
CVE-2024-35168
CVE-2024-35168 is a Missing Authorization vulnerability in the WordPress plugin WP Discourse, affecting WP Discourse versions from unspecified (n/a) up to 2.5.1. The public data provide a CVSS v3.1 base score of 4.3 (Network attack, Low attack complexity, Low privileges required, No user interact...
WordPress WP Discourse Plugin <= 2.5.1 is vulnerable to Broken Access Control
Software WP Discourse Type Plugin Vulnerable versions = 2.5.1 Fixed in 2.5.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-35168 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4c4620868728 Credits Joshua Chan Required privilege...