CVE-2023-4943 in BEAR Pluginالمعلومات

الملخص

بحسب MITRE • 25/10/2023

The BEAR for WordPress is vulnerable to Missing Authorization in versions up to, and including, 1.1.3.3. This is due to a missing capability check on the woobe_bulkoperations_visibility function. This makes it possible for authenticated attackers (subscriber or higher) to manipulate products.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

13/09/2023

إفشاء

25/10/2023

الاعتدال

تمت الموافقة

إدخال

VDB-240285

EPSS

0.00483

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Want to know what is going to be exploited?

We predict KEV entries!