5 matches found
CVE-2024-38726
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33...
CVE-2024-38726 WordPress Product Designer plugin <= 1.0.33 - Arbitrary Content Deletion vulnerability
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33...
CVE-2024-38726
The CVE-2024-38726 entry concerns WordPress Product Designer plugin versions prior to or equal to 1.0.33, with a Missing Authorization vulnerability that allows Access to functionality not properly constrained by ACLs. The issue affects PickPlugins Product Designer and is documented as an Arbitra...
CVE-2024-38726 WordPress Product Designer plugin <= 1.0.33 - Arbitrary Content Deletion vulnerability
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33...
WordPress Product Designer Plugin <= 1.0.33 is vulnerable to Arbitrary Content Deletion
Software Product Designer Type Plugin Vulnerable versions = 1.0.33 Fixed in 1.0.34 OWASP Top 10 A1: Broken Access Control Classification Arbitrary Content Deletion CVE CVE-2024-38726 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 863c0e79b2db Credits Emili Castells...