CVE-2024-0617
The CVE-2024-0617 entry concerns the Category Discount Woocommerce plugin for WordPress. A missing capability check in the wpcd_save_discount() function affects all versions up to and including 4.12, enabling unauthenticated attackers to modify product category discounts and potentially cause rev...