CVE-2023-4943 in BEAR Plugininformation

Résumé

par MITRE • 25/10/2023

The BEAR for WordPress is vulnerable to Missing Authorization in versions up to, and including, 1.1.3.3. This is due to a missing capability check on the woobe_bulkoperations_visibility function. This makes it possible for authenticated attackers (subscriber or higher) to manipulate products.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Réserver

13/09/2023

Divulgation

25/10/2023

Modérer

accepté

Entrée

VDB-240285

CPE

prêt

EPSS

0.00483

KEV

non

Activités

très faible

Sources

Do you know our Splunk app?

Download it now for free!