exploitDog

GHSA-qrqj-j85r-f7h4

Опубликовано: 15 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 4.9

Описание

The WooCommerce WordPress plugin before 8.6 does not prevent users with at least the contributor role from leaking products they shouldn't have access to. (e.g. private, draft and trashed products)

The WooCommerce WordPress plugin before 8.6 does not prevent users with at least the contributor role from leaking products they shouldn't have access to. (e.g. private, draft and trashed products)

Ссылки

EPSS

Процентиль: 51%

0.00279

Низкий

4.9 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2024-1310

CVSS3: 4.9

nvd

почти 2 года назад

The WooCommerce WordPress plugin before 8.6 does not prevent users with at least the contributor role from leaking products they shouldn't have access to. (e.g. private, draft and trashed products)

EPSS

Процентиль: 51%

0.00279

Низкий

4.9 Medium

CVSS3

CVE ID