4 matches found
CVE-2024-38702 WordPress Product Delivery Date for WooCommerce – Lite plugin <= 2.7.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in Tyche Softwares Product Delivery Date for WooCommerce – Lite allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Delivery Date for WooCommerce – Lite: from n/a through 2.7.2...
CVE-2024-38702
CVE-2024-38702 relates to Tyche Software’s Product Delivery Date for WooCommerce – Lite, describing a Missing Authorization vulnerability that allows accessing functionality not properly constrained by ACLs. Affected versions are Lite up to 2.7.2 (inclusive); remediation is to upgrade to a versio...
CVE-2024-38702 WordPress Product Delivery Date for WooCommerce – Lite plugin <= 2.7.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in Tyche Softwares Product Delivery Date for WooCommerce – Lite allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Delivery Date for WooCommerce – Lite: from n/a through 2.7.2...
WordPress Product Delivery Date for WooCommerce – Lite Plugin <= 2.7.2 is vulnerable to Broken Access Control
Software Product Delivery Date for WooCommerce – Lite Type Plugin Vulnerable versions = 2.7.2 Fixed in 2.7.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-38702 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a611019beea2 Credits...