Lucene search
K

4 matches found

NVD
NVD
added 2024/11/01 3:15 p.m.9 views

CVE-2024-37510

Missing Authorization vulnerability in Charitable Donations & Fundraising Team Charitable allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Charitable: from n/a through 1.8.1.7...

6.5CVSS0.00443EPSS
Exploits0References1
CVE
CVE
added 2024/11/01 2:18 p.m.43 views

CVE-2024-37510

CVE-2024-37510 concerns WordPress plugin Charitable (Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress) with versions up to 1.8.1.7. The root cause is a missing authorization check that allows users to access functionality not constrained by ACLs. The vulnerabil...

6.5CVSS6.5AI score0.00443EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/01 2:18 p.m.13 views

CVE-2024-37510 WordPress Donation Forms by Charitable plugin <= 1.8.1.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Charitable Donations & Fundraising Team Charitable allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Charitable: from n/a through 1.8.1.7...

6.5CVSS6.9AI score0.00443EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/04 12:0 a.m.11 views

WordPress Charitable Plugin <= 1.8.1.7 is vulnerable to Broken Access Control

Software Charitable Type Plugin Vulnerable versions = 1.8.1.7 Fixed in 1.8.1.8 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-37510 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID a9ef1ac55d95 Credits Dhabaleshwar Das Require...

6.5CVSS6.3AI score0.00443EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder