3 matches found
CVE-2024-43925 WordPress Envira Gallery Lite plugin <= 1.8.14 - Broken Access Control vulnerability
Missing Authorization vulnerability in Envira Gallery Team Envira Photo Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Envira Photo Gallery: from n/a through 1.8.14...
CVE-2024-43925
CVE-2024-43925 describes a Missing Authorization vulnerability in the Envira Gallery WordPress plugins (Envira Gallery Lite / Envira Photo Gallery) affecting versions up to and including 1.8.14. The issue arises from incorrectly configured access control/security levels, enabling a bypass of auth...
WordPress Envira Photo Gallery Plugin <= 1.8.14 is vulnerable to Broken Access Control
Software Envira Photo Gallery Type Plugin Vulnerable versions = 1.8.14 Fixed in 1.8.15 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43925 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9c53eb2407a8 Credits Rafie Muhammad...