The Order Tip for WooCommerce plugin... CVE-2024-1119

- AV AC AU C I A
发布: 2024-03-20
修订: 2024-03-20

The Order Tip for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_tips_to_csv() function in all versions up to, and including, 1.3.1. This makes it possible for unauthenticated attackers to export the plugin's order fees.

0%
暂无可用Exp或PoC
当前有0条受影响产品信息