3 matches found
CVE-2024-33564
CVE-2024-33564 refers to a Missing Authorization vulnerability in the WordPress XStore (8theme XStore) theme. Public details indicate an Arbitrary Option Update issue affecting XStore versions up to 9.3.8 (inclusive). The root cause is missing authorization allowing unauthorized changes to theme ...
CVE-2024-33561
CVE-2024-33561 - Summary (validated from connected docs) Affected product: 8theme XStore (WordPress/WooCommerce theme) versions up to 9.3.8 (n/a through 9.3.8 range cited) as described in the CVE entry and Red Hat advisory. Vulnerability type and root cause: Missing Authorization / unauthenticate...
CVE-2024-33563
CVE-2024-33563 is described as a Missing Authorization vulnerability affecting 8theme XStore. The initial description states impact on XStore from n/a through 9.3.8. Connected sources corroborate a broader set of XStore/XStore Core vulnerabilities with high CVSS metrics, but do not provide a conf...