The Simple Photoswipe WordPress plugin through 0.1 does not have authorisation check when updating its settings, which could allow any authenticated users, such as subscriber to update them
CVSS
No CVSS.
References
No reference.
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2024-06-28T06:00:03.518Z
Updated: 2024-07-08T20:41:08.852Z
Reserved: 2024-05-31T18:22:56.272Z
Link: CVE-2024-5570
JSON object: View
NVD Information
No data.
Redhat Information
No data.
CWE
No CWE.