PT-2019-7789 · Optinmonster · Optinmonster

James Golovich

Publicado

2019-09-20

Atualizado

2019-09-20

CVE-2016-10996

CVSS v3.1

5.3

Média

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions optinmonster plugin versions prior to 1.1.4.6

Description The issue is related to incorrect access control for shortcodes due to a nonce leak.

Recommendations For versions prior to 1.1.4.6, update to version 1.1.4.6 or later to resolve the issue.

Correção

Incorrect Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2016-10996

Optinmonster