CVE-2024-10591
The CVE CVE-2024-10591 concerns the MWB HubSpot for WooCommerce plugin for WordPress (versions up to 1.5.9). The vulnerability is a missing capability check in hubwoo_save_updates(), allowing authenticated attackers with Contributor-level access or higher to modify arbitrary options, potentially ...