3 matches found
CVE-2024-49293
Missing Authorization vulnerability in RexTheme WP VR wpvr allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP VR: from n/a through = 8.5.4...
CVE-2024-49293
CVE-2024-49293 corresponds to a Missing Authorization (Broken Access Control) vulnerability in the WordPress WP VR (Rextheme WP VR) plugin, affecting versions up to and including 8.5.4. Public sources provide a CVSS v3.1 base score of 5.4 (Medium) with Network attack vector and Low impact on conf...
WordPress WP VR Plugin <= 8.5.4 is vulnerable to Broken Access Control
Software WP VR Type Plugin Vulnerable versions = 8.5.4 Fixed in 8.5.5 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-49293 Patch priority Low CVSS severity Low 4.3 Developer WPFunnels Team PSID ece40c2ceb73 Credits Trương Hữu Phúc truonghuuphuc Required...