exploitDog

CVE-2025-31609

Опубликовано: 31 мар. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

Missing Authorization vulnerability in Arni Cinco WPCargo Track & Trace allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WPCargo Track & Trace: from n/a through 7.0.6.

Ссылки

https://patchstack.com/database/wordpress/plugin/wpcargo/vulnerability/wordpress-wpcargo-track-trace-plugin-7-0-6-insecure-direct-object-references-idor-vulnerability?_s_id=cve

EPSS

Процентиль: 37%

0.0016

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-qr2v-3fjr-52fc

CVSS3: 4.3

github

10 месяцев назад

Missing Authorization vulnerability in Arni Cinco WPCargo Track & Trace allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WPCargo Track & Trace: from n/a through 7.0.6.

EPSS

Процентиль: 37%

0.0016

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862