Trương Hữu Phúc

**Nome do Software Vulnerável e Versões Afetadas** WP Meta and Date Remover versões anteriores a 2.3.7 **Description** Uma falha de autorização ausente no plugin Prasad Kirpekar WP Meta and Date Remover permite a exploração de níveis de segurança de controle de acesso configurados incorretamente. Trata-se de uma falha de controle de acesso interrompido, na qual o sistema não verifica adequadamente se um usuário possui as permissões necessárias para realizar uma ação. **Recommendations** Atualize para uma versão posterior a 2.3.6.

**Nome do Software Vulnerável e Versões Afetadas** Spectra versões anteriores a 2.19.23 **Descrição** Uma falha de autorização ausente no Brainstorm Force Spectra ultimate-addons-for-gutenberg permite a exploração de níveis de segurança de controle de acesso configurados incorretamente. **Recomendações** Atualize para uma versão posterior à 2.19.22.

**Name of the Vulnerable Software and Affected Versions** Pranayama Yoga versions through 1.2.2 **Description** An issue exists in Pranayama Yoga that relates to incorrectly configured access control security levels, potentially allowing unauthorized access. **Recommendations** Update Pranayama Yoga to a version later than 1.2.2.

**Name of the Vulnerable Software and Affected Versions** raratheme Influencer versions through 1.1.7 **Description** An issue exists in raratheme Influencer that relates to incorrectly configured access control security levels, potentially allowing unauthorized access. The vulnerability is a missing authorization flaw. **Recommendations** Update raratheme Influencer to a version later than 1.1.7.

**Name of the Vulnerable Software and Affected Versions** Travel Diaries versions through 1.2.4 **Description** An issue exists in Travel Diaries related to incorrectly configured access control security levels, allowing for missing authorization. The vulnerability allows exploitation of access control. **Recommendations** Update Travel Diaries to a version later than 1.2.4.

**Name of the Vulnerable Software and Affected Versions** Kalon versions through 1.2.9 **Description** An authorization issue exists in raratheme Kalon. The issue involves incorrectly configured access control security levels, potentially allowing unauthorized access. **Recommendations** Update Kalon to a version later than 1.2.9.

**Name of the Vulnerable Software and Affected Versions** raratheme Perfect Portfolio versions through 1.2.4 **Description** An issue exists in raratheme Perfect Portfolio related to incorrectly configured access control security levels, allowing for missing authorization. This can potentially lead to unauthorized access. **Recommendations** Update raratheme Perfect Portfolio to a version later than 1.2.4.

**Name of the Vulnerable Software and Affected Versions** Bakes And Cakes versions through 1.2.9 **Description** An issue exists in Bakes And Cakes related to incorrectly configured access control security levels, allowing for missing authorization. The vulnerability allows exploitation of access control. **Recommendations** Update Bakes And Cakes to a version later than 1.2.9.

**Name of the Vulnerable Software and Affected Versions** raratheme Benevolent versions through 1.3.9 **Description** An authorization issue exists in raratheme Benevolent that allows exploitation due to incorrectly configured access control security levels. **Recommendations** Update raratheme Benevolent to a version later than 1.3.9.

**Name of the Vulnerable Software and Affected Versions** raratheme Business One Page versions through 1.3.2 **Description** An issue exists in raratheme Business One Page related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue involves a missing authorization check. **Recommendations** Update raratheme Business One Page to a version later than 1.3.2.

**Name of the Vulnerable Software and Affected Versions** Rara Business versions through 1.3.0 **Description** An authorization issue exists in Rara Business, allowing exploitation of incorrectly configured access control security levels. **Recommendations** Update Rara Business to a version later than 1.3.0.

**Name of the Vulnerable Software and Affected Versions** raratheme The Minimal versions through 1.2.9 **Description** An issue exists in raratheme The Minimal related to incorrectly configured access control security levels, allowing for missing authorization. The vulnerability allows exploitation of these levels. **Recommendations** Update raratheme The Minimal to a version later than 1.2.9.

**Name of the Vulnerable Software and Affected Versions** The Conference versions through 1.2.5 **Description** An issue exists in The Conference related to incorrectly configured access control security levels, allowing for missing authorization. The vulnerability allows exploitation of these levels. **Recommendations** Update The Conference to a version later than 1.2.5.

**Name of the Vulnerable Software and Affected Versions** JobScout versions through 1.1.7 **Description** An authorization issue exists in JobScout that allows exploitation of incorrectly configured access control security levels. The issue concerns access control and could potentially allow unauthorized access to resources. **Recommendations** Update JobScout to a version later than 1.1.7.

**Name of the Vulnerable Software and Affected Versions** raratheme Construction Landing Page versions 1.4.1 and earlier **Description** An issue exists in raratheme Construction Landing Page related to incorrectly configured access control security levels, potentially allowing unauthorized access. The vulnerability involves a missing authorization check. **Recommendations** Update raratheme Construction Landing Page to a version later than 1.4.1.

**Name of the Vulnerable Software and Affected Versions** raratheme Travel Agency versions through 1.5.5 **Description** An issue exists in raratheme Travel Agency related to incorrectly configured access control security levels, allowing for missing authorization. The issue allows exploitation of these levels. **Recommendations** Update raratheme Travel Agency to a version later than 1.5.5.

**Name of the Vulnerable Software and Affected Versions** raratheme Preschool and Kindergarten versions 1.0.0 through 1.2.5 **Description** An issue exists in raratheme Preschool and Kindergarten that relates to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue is a missing authorization check. **Recommendations** Update raratheme Preschool and Kindergarten to a version later than 1.2.5.

**Name of the Vulnerable Software and Affected Versions** Corpiva versions through 1.0.96 **Description** A Cross-Site Request Forgery (CSRF) issue exists in Corpiva. This allows attackers to potentially perform actions on behalf of an authenticated user without their knowledge. The issue impacts the application by enabling unauthorized command execution. **Recommendations** Update Corpiva to a version newer than 1.0.96.

**Name of the Vulnerable Software and Affected Versions** shufflehound Lemmony versions prior to 1.7.1 **Description** The software contains a Cross-Site Request Forgery (CSRF) flaw. This allows attackers to perform actions on behalf of authenticated users without their knowledge. The issue affects the Lemmony component. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** raratheme Elegant Pink versions through 1.3.3 **Description** An authorization issue exists in raratheme Elegant Pink, allowing exploitation of incorrectly configured access control security levels. **Recommendations** Update raratheme Elegant Pink to a version later than 1.3.3.