exploitDog

CVE-2025-24653

Опубликовано: 27 янв. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

Missing Authorization vulnerability in NotFound Admin and Site Enhancements (ASE) Pro allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Admin and Site Enhancements (ASE) Pro: from n/a through 7.6.1.1.

Ссылки

https://patchstack.com/database/wordpress/plugin/admin-site-enhancements-pro/vulnerability/wordpress-admin-and-site-enhancements-ase-pro-plugin-7-6-1-1-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 27%

0.00094

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-4p3m-85w6-62v7

CVSS3: 4.3

github

около 1 года назад

Missing Authorization vulnerability in NotFound Admin and Site Enhancements (ASE) Pro allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Admin and Site Enhancements (ASE) Pro: from n/a through 7.6.1.1.

EPSS

Процентиль: 27%

0.00094

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862