The WP Club Manager – WordPress Sports Club Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the settings_save() function in all versions up to, and including, 2.2.10. This makes it possible for unauthenticated attackers to update the permalink structure for the clubs
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Wordfence
Published: 2024-02-05T21:21:46.213Z
Updated: 2024-02-05T21:21:46.213Z
Reserved: 2024-02-01T20:31:47.221Z
Link: CVE-2024-1177
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-05T22:16:07.813
Modified: 2024-02-13T14:06:04.817
Link: CVE-2024-1177
JSON object: View
Redhat Information
No data.
CWE