CVE-2024-8513 in QA Analytics Plugin
Sumário
de MITRE • 10/10/2024
The QA Analytics – Web Analytics Tool with Heatmaps & Session Replay Across All Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_save_plugin_config() function in all versions up to, and including, 4.1.0.0. This makes it possible for unauthenticated attackers to update the plugin's settings.
VulDB is the best source for vulnerability data and more expert information about this specific topic.