2 matches found
CVE-2024-3662
The WPZOOM Social Feed Widget & Block plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wpzoominstagramcleardata function in all versions up to, and including, 2.1.13. This makes it possible for authenticated attackers, with subscriber-level access...
WordPress WPZOOM Social Feed Widget & Block Plugin <= 2.1.13 is vulnerable to Broken Access Control
Software WPZOOM Social Feed Widget & Block Type Plugin Vulnerable versions = 2.1.13 Fixed in 2.1.14 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-3662 Patch priority Low CVSS severity Low 4.3 Developer WPZOOM PSID 8e3610603ba9 Credits Thura Moe Myint...