CVE-2023-4943 in BEAR PluginИнформация

Сводка

по MITRE • 25.10.2023

The BEAR for WordPress is vulnerable to Missing Authorization in versions up to, and including, 1.1.3.3. This is due to a missing capability check on the woobe_bulkoperations_visibility function. This makes it possible for authenticated attackers (subscriber or higher) to manipulate products.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Резервировать

13.09.2023

Раскрытие

25.10.2023

Модерация

принято

Вход

VDB-240285

EPSS

0.00483

KEV

Нет

Деятельности

Очень низкий

Сектор

Hostingprovider

Источники

Want to know what is going to be exploited?

We predict KEV entries!