CVE-2024-1352

CVE-2024-1352 affects the Classified Listing plugin for WordPress (Classified Listing – Classified ads & Business Directory Plugin) up to version 3.0.4. The root cause is a missing capability check in rtcl_import_location() and rtcl_import_category(), enabling authenticated users with subscriber-...