Lucene search
K

4 matches found

Cvelist
Cvelist
added 2025/01/30 1:42 p.m.18 views

CVE-2024-10591 MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics <= 1.5.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Options Update

The MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the hubwoosaveupdates function in all version...

8.8CVSS0.00448EPSS
Exploits0References3
CVE
CVE
added 2025/01/30 1:42 p.m.60 views

CVE-2024-10591

The CVE CVE-2024-10591 concerns the MWB HubSpot for WooCommerce plugin for WordPress (versions up to 1.5.9). The vulnerability is a missing capability check in hubwoo_save_updates(), allowing authenticated attackers with Contributor-level access or higher to modify arbitrary options, potentially ...

8.8CVSS8.8AI score0.00448EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/30 1:42 p.m.10 views

CVE-2024-10591 MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics <= 1.5.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Options Update

The MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the hubwoosaveupdates function in all version...

8.8CVSS8.7AI score0.00448EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/01/30 12:0 a.m.7 views

PT-2025-1597 · WordPress · Mwb Hubspot For Woocommerce

Name of the Vulnerable Software and Affected Versions: MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics plugin for WordPress versions up to, and including, 1.5.9 Description: The issue concerns unauthorized modification of data that can lead to...

8.8CVSS9.6AI score0.00448EPSS
Exploits0References9
Rows per page
Query Builder