Md Ismail

**Name of the Vulnerable Software and Affected Versions** weDevs WP Project Manager versions through 3.0.1 **Description** A flaw exists in weDevs WP Project Manager that allows for the retrieval of embedded sensitive data. The issue involves the insertion of sensitive information into sent data. **Recommendations** Update weDevs WP Project Manager to a version later than 3.0.1.

**Name of the Vulnerable Software and Affected Versions** CubeWP versions through 1.1.27 **Description** A missing authorization issue exists in CubeWP, allowing access to functionality that is not properly restricted by Access Control Lists (ACLs). This could allow unauthorized access to certain features or data within the application. **Recommendations** Update CubeWP to a version later than 1.1.27.

**Name of the Vulnerable Software and Affected Versions** HappyDevs TempTool versions through 1.3.1 **Description** HappyDevs TempTool contains a flaw that could allow unauthorized retrieval of embedded sensitive data, potentially exposing sensitive system information. **Recommendations** Update HappyDevs TempTool to a version later than 1.3.1.

**Name of the Vulnerable Software and Affected Versions** Arraytics Timetics versions n/a through 1.0.44 **Description** An authorization issue exists in Arraytics Timetics, allowing exploitation of incorrectly configured access control security levels. This allows unauthorized access to the system. **Recommendations** Update Arraytics Timetics to a version later than 1.0.44.

**Name of the Vulnerable Software and Affected Versions** WPZOOM Recipe Card Blocks for Gutenberg & Elementor versions through 3.4.8 **Description** A missing authorization flaw exists in WPZOOM Recipe Card Blocks for Gutenberg & Elementor. The issue could allow unauthorized access to resources. There is no information about the number of potentially affected devices or any real-world incidents related to this issue. **Recommendations** Update WPZOOM Recipe Card Blocks for Gutenberg & Elementor to a version later than 3.4.8.

**Name of the Vulnerable Software and Affected Versions** Darren Cooney Ajax Load More versions through 7.6.0.2 **Description** A flaw exists in Darren Cooney Ajax Load More that allows for the retrieval of embedded sensitive data, potentially exposing sensitive system information to an unauthorized control sphere. **Recommendations** Update to a version later than 7.6.0.2.

**Name of the Vulnerable Software and Affected Versions** nK Lazy Blocks versions through 4.1.0 **Description** An authorization issue exists in nK Lazy Blocks, allowing exploitation due to incorrectly configured access control security levels. **Recommendations** Update nK Lazy Blocks to a version later than 4.1.0.

**Name of the Vulnerable Software and Affected Versions** Getwid versions through 2.1.2 **Description** A flaw exists in Getwid that allows for the retrieval of embedded sensitive data due to the insertion of sensitive information into sent data. **Recommendations** Update Getwid to a version later than 2.1.2.

**Name of the Vulnerable Software and Affected Versions** Cozmoslabs Paid Member Subscriptions versions through 2.15.9 **Description** The software contains a missing authorization flaw due to incorrectly configured access control security levels. **Recommendations** Update to a version later than 2.15.9.

Name of the Vulnerable Software and Affected Versions: Nexter Blocks versions through 4.5.4 Description: Missing authorization exists in POSIMYTH Nexter Blocks due to incorrectly configured access control security levels. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.