2 matches found
CVE-2024-38690
CVE-2024-38690 corresponds to a Missing Authorization vulnerability in Avirtum iPanorama 360 WordPress Virtual Tour Builder. Connected sources confirm the issue affects WordPress plugin versions 1.8.3 and earlier and describe a broken access-control scheme that allows accessing functionality not ...
WordPress iPanorama 360 WordPress Virtual Tour Builder Plugin <= 1.8.3 is vulnerable to Broken Access Control
Software iPanorama 360 WordPress Virtual Tour Builder Type Plugin Vulnerable versions = 1.8.3 Fixed in 1.8.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-38690 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 070f425a0f60 Credits...