2 matches found
CVE-2024-38699
CVE-2024-38699 concerns the Wallet System for WooCommerce (WordPress plugin) with Missing Authorization allowing access to wallet-related functionality not properly constrained by ACLs. Public details indicate affected versions up to 2.5.13, and a remediation path is to upgrade to a version later...
WordPress Wallet System for WooCommerce Plugin <= 2.5.13 is vulnerable to Sensitive Data Exposure
Software Wallet System for WooCommerce Type Plugin Vulnerable versions = 2.5.13 Fixed in 2.5.14 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-38699 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID 327b356a379c Credits Joshua Ch...