2 matches found
CVE-2024-47311
CVE-2024-47311 relates to a Broken Access Control/missing authorization vulnerability in WordPress plugin Wheel of Life. Affected versions are
CVE-2024-3627
CVE-2024-3627 affects Wheel of Life: Coaching and Assessment Tool for Life Coach (WordPress). The WordPress plugin versions up to 1.1.7 are vulnerable due to missing authorization checks in AjaxFunctions.php, allowing authenticated attackers with subscriber-level access or higher to delete arbitr...