4 matches found
WordPress Getwid – Gutenberg Blocks Plugin <= 2.0.10 is vulnerable to Broken Access Control
Software Getwid – Gutenberg Blocks Type Plugin Vulnerable versions = 2.0.10 Fixed in 2.0.11 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-6491 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 17de91b96aed Credits Peter Thaleikis...
CVE-2024-6491
The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the mailchimpapikeymanage function in all versions up to, and including, 2.0.10. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2024-6491 Getwid – Gutenberg Blocks <= 2.0.10 - Missing Authentication to MailChimp API key update
The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the mailchimpapikeymanage function in all versions up to, and including, 2.0.10. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2024-6491 Getwid – Gutenberg Blocks <= 2.0.10 - Missing Authentication to MailChimp API key update
The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the mailchimpapikeymanage function in all versions up to, and including, 2.0.10. This makes it possible for authenticated attackers, with Contributor-level...