5 matches found
CVE-2024-35686
Missing Authorization vulnerability in Automattic Sensei LMS, Automattic Sensei Pro WC Paid Courses.This issue affects Sensei LMS: from n/a through 4.23.1; Sensei Pro WC Paid Courses: from n/a through 4.23.1.1.23.1...
CVE-2024-35686
The CVE-2024-35686 entry concerns a Missing Authorization vulnerability in Automattic Sensei LMS and Sensei Pro (WC Paid Courses). Connected documents provide concrete details: affected versions include Sensei LMS up to 4.23.1 and Sensei Pro (WC Paid Courses) up to 4.23.1.1.23.1. The issue is cat...
CVE-2024-35686 WordPress Sensei LMS plugin <= 4.23.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Automattic Sensei LMS, Automattic Sensei Pro WC Paid Courses.This issue affects Sensei LMS: from n/a through 4.23.1; Sensei Pro WC Paid Courses: from n/a through 4.23.1.1.23.1...
WordPress Sensei LMS Plugin <= 4.23.1 is vulnerable to Broken Access Control
Software Sensei LMS Type Plugin Vulnerable versions = 4.23.1 Fixed in 4.24.0 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-35686 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID b6768fcb485b Credits Rafie Muhammad Patchstack Requir...
WordPress Sensei Pro (WC Paid Courses) Plugin <= 4.23.1.1.23.1 is vulnerable to Broken Access Control
Software Sensei Pro WC Paid Courses Type Plugin Vulnerable versions = 4.23.1.1.23.1 Fixed in 4.24.0.1.24.0 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-35686 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 5a225c011e38 Credits...