Incorrect Authorization vulnerability in Themeum Droip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Droip: from n/a through 1.1.1.
Metrics
Affected Vendors & Products
References
History
Fri, 30 Aug 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Themeum
Themeum droip |
|
CPEs | cpe:2.3:a:themeum:droip:*:*:*:*:*:wordpress:*:* | |
Vendors & Products |
Themeum
Themeum droip |
Thu, 29 Aug 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 29 Aug 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Incorrect Authorization vulnerability in Themeum Droip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Droip: from n/a through 1.1.1. | |
Title | WordPress Droip plugin <= 1.1.1 - Subscriber+ Settings Change/Data Exposure Vulnerability | |
Weaknesses | CWE-863 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published: 2024-08-29T15:18:07.542Z
Updated: 2024-08-29T16:08:18.762Z
Reserved: 2024-08-18T21:56:39.242Z
Link: CVE-2024-43954
Vulnrichment
Updated: 2024-08-29T16:08:14.551Z
NVD
Status : Analyzed
Published: 2024-08-29T16:15:09.383
Modified: 2024-08-30T16:24:37.460
Link: CVE-2024-43954
Redhat
No data.