CVE-2024-50490 – WordPress PegaPoll plugin <= 1.0.2 - Arbitrary Option Update to Privilege Escalation vulnerability

https://notcve.org/view.php?id=CVE-2024-50490

25 Oct 2024 — Missing Authorization vulnerability in Szabolcs Szecsenyi PegaPoll allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects PegaPoll: from n/a through 1.0.2. La vulnerabilidad de autorización faltante en Szabolcs Szecsenyi PegaPoll permite acceder a funcionalidades que no están correctamente restringidas por las ACL. Este problema afecta a PegaPoll: desde n/a hasta 1.0.2. The PegaPoll plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege... • https://github.com/RandomRobbieBF/CVE-2024-50490 • CWE-862: Missing Authorization •