SSU < 1.5.1 - Missing Authorization

Description The SSU plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the deleteawsoptions function in versions up to, and including, 1.5.0. This makes it possible for unauthenticated attackers to delete AWS options...

CVE-2024-33597 WordPress SSU plugin <= 1.5.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in ProFaceOff SSU.This issue affects SSU: from n/a through 1.5.0...

CVE-2024-33597 WordPress SSU plugin <= 1.5.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in ProFaceOff SSU.This issue affects SSU: from n/a through 1.5.0...

WordPress SSU plugin <= 1.5.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin SSU versions = 1.5.0...

WordPress SSU Plugin <= 1.5.0 is vulnerable to Broken Access Control

Software SSU Type Plugin Vulnerable versions = 1.5.0 Fixed in 1.5.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-33597 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID d4a0eaecd496 Credits Mika Required privilege Unauthenticated...