3 matches found
Improper Privilege Management
Overview Affected versions of this package are vulnerable to Improper Privilege Management via the restore process. An attacker can gain unauthorized administrative privileges by uploading a crafted SQLite database file, allowing access to user management, audit logs, debug endpoints, and operato...
CVE-2021-33031
In LabCup before...
PT-2024-22430 · WordPress · Woocommerce Customers Manager
Name of the Vulnerable Software and Affected Versions: WooCommerce Customers Manager WordPress plugin versions prior to 30.1 Description: The issue concerns a lack of CSRF checks in certain areas of the plugin, which could allow attackers to make logged-in admin users delete users via CSRF attack...