exploitDog

CVE-2025-32226

Опубликовано: 04 апр. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

Missing Authorization vulnerability in Anzar Ahmed Display product variations dropdown on shop page allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Display product variations dropdown on shop page: from n/a through 1.1.3.

Ссылки

https://patchstack.com/database/wordpress/plugin/display-product-variations-dropdown-on-shop-page/vulnerability/wordpress-display-product-variations-dropdown-on-shop-page-plugin-1-1-3-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 38%

0.00168

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-j95j-frq6-6x8g

CVSS3: 4.3

github

10 месяцев назад

Missing Authorization vulnerability in Anzar Ahmed Display product variations dropdown on shop page allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Display product variations dropdown on shop page: from n/a through 1.1.3.

EPSS

Процентиль: 38%

0.00168

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862