Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/04/12 8:14 a.m.28 views

CVE-2025-2719

The Swatchly – WooCommerce Variation Swatches for Products product attributes: Image swatch, Color swatches, Label swatches plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxdismiss function in versions 1.2.8 to 1.4.0. This makes ...

6.5CVSS6.7AI score0.00269EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/10 7:2 a.m.34 views

CVE-2025-2719 Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) 1.2.8 - 1.4.0 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update

The Swatchly – WooCommerce Variation Swatches for Products product attributes: Image swatch, Color swatches, Label swatches plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajaxdismiss function in versions 1.2.8 to 1.4.0. This makes ...

6.5CVSS0.00269EPSS
Exploits0References2
CVE
CVE
added 2025/04/10 7:2 a.m.59 views

CVE-2025-2719

CVE-2025-2719 concerns the Swatchly – WooCommerce Variation Swatches for Products plugin for WordPress. Versions 1.2.8 to 1.4.0 expose an unauthorized modification risk via a missing capability check in the ajax_dismiss function. This could allow authenticated attackers with Subscriber-level acce...

6.5CVSS6.2AI score0.00269EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/04/09 9:51 p.m.7 views

WordPress Swatchly – WooCommerce Variation Swatches for Products plugin 1.2.8-1.4.0 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update vulnerability

Missing Authorization to Authenticated Subscriber+ Limited Options Update vulnerability discovered by kr0d in WordPress Plugin Swatchly – WooCommerce Variation Swatches for Products versions 1.2.8-1.4.0...

6.5CVSS8.4AI score0.00269EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder