PT-2024-14180 · WordPress · Simple Staff List

Abdi Pranata

Published

2024-06-12

Updated

2024-06-13

CVE-2023-51526

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Simple Staff List versions 2.2.4 and earlier

Description A Missing Authorization issue has been identified. This issue affects the Simple Staff List plugin, allowing potential unauthorized access due to the lack of proper authorization checks.

Recommendations For versions 2.2.4 and earlier, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2023-51526

Affected Products

Simple Staff List

PT-2024-14180 · WordPress · Simple Staff List

CVE-2023-51526

Weakness Enumeration

Related Identifiers

Affected Products

References · 2