Lucene search

K
wpvulndbWpvulndbWPVDB-ID:DC22BB16-6BB7-4AEE-AE33-40B25774B146
HistoryMay 16, 2024 - 12:00 a.m.

Aiomatic < 1.9.4 - Missing Authorization

2024-05-1600:00:00
wpscan.com
1
aiomatic plugin vulnerability
wordpress
unauthorized access

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

Description The Aiomatic plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 1.9.3. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform an unauthorized action.

CPENameOperatorVersion
eq1.9.4

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

Related for WPVDB-ID:DC22BB16-6BB7-4AEE-AE33-40B25774B146