6 matches found
CVE-2024-43332
Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0...
CVE-2024-43332
Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0...
CVE-2024-43332
Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0...
CVE-2024-43332 WordPress Photo Engine plugin <= 6.4.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0...
CVE-2024-43332
CVE-2024-43332 is a Missing Authorization vulnerability in the WordPress Photo Engine (WPLR-Sync) plugin, affecting Photo Engine versions n/a through 6.4.0. The issue stems from incorrectly configured access control, enabling unauthorized access to protected resources. Public references note High...
WordPress Photo Engine Plugin <= 6.4.0 is vulnerable to Broken Access Control
Software Photo Engine Type Plugin Vulnerable versions = 6.4.0 Fixed in 6.4.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43332 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 6c8a51b120f7 Credits Majed Refaea Required privilege...