3 matches found
CVE-2024-8513 QA Analytics <= 4.1.1.1 - Missing Authorization to Unauthenticated Settings Update
The QA Analytics – Web Analytics Tool with Heatmaps & Session Replay Across All Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxsavepluginconfig function in all versions up to, and including, 4.1.1.1. This makes it possibl...
CVE-2024-8513 QA Analytics <= 4.1.1.1 - Missing Authorization to Unauthenticated Settings Update
The QA Analytics – Web Analytics Tool with Heatmaps & Session Replay Across All Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxsavepluginconfig function in all versions up to, and including, 4.1.1.1. This makes it possibl...
WordPress QA Analytics Plugin <= 4.1.1.1 is vulnerable to Broken Access Control
Software QA Analytics Type Plugin Vulnerable versions = 4.1.1.1 Fixed in 4.1.1.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-8513 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 471d8b8517cc Credits Peter Thaleikis Required...