2 matches found
WordPress Sliced Invoices Plugin <= 3.9.2 is vulnerable to Broken Access Control
Software Sliced Invoices Type Plugin Vulnerable versions = 3.9.2 Fixed in 3.9.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-30517 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID f6c77e858dd8 Credits Lucio Sá Required privilege...
PT-2020-16165 · Moodle +1 · Moodle +1
Name of the Vulnerable Software and Affected Versions: Moodle versions 3.7 through 3.7.8 Moodle versions 3.8 through 3.8.5 Moodle versions 3.9 through 3.9.2 Description: The participants table download in Moodle always included user emails, but should have only done so when users' emails are not...