1 results (0.005 seconds)
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43219 – WordPress Persian WooCommerce plugin <= 7.1.6 - Broken Access Control vulnerability
https://notcve.org/view.php?id=CVE-2024-43219
Missing Authorization vulnerability in ووکامرس فارسی Persian WooCommerce allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Persian WooCommerce: from n/a through 7.1.6. The Persian WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 7.1.6. This makes it possible for unauthenticated attackers to perform an unauthorized action. • https://patchstack.com/database/vulnerability/persian-woocommerce/wordpress-persian-woocommerce-plugin-7-1-6-broken-access-control-vulnerability?_s_id=cve • CWE-862: Missing Authorization •