3 matches found
CVE-2024-43277
Missing Authorization vulnerability in AyeCode Ltd UsersWP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UsersWP: from n/a through 1.2.15...
CVE-2024-43277 WordPress UsersWP plugin <= 1.2.15 - Broken Access Control vulnerability
Missing Authorization vulnerability in AyeCode Ltd UsersWP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UsersWP: from n/a through 1.2.15...
WordPress UsersWP Plugin <= 1.2.15 is vulnerable to Broken Access Control
Software UsersWP Type Plugin Vulnerable versions = 1.2.15 Fixed in 1.2.16 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43277 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID e8ba6491acea Credits Ananda Dhakal Patchstack Required...