PT-2024-27302 · Unknown · Wishlist Member

Dave Jong

·

Published

2024-06-24

·

Updated

2024-08-20

·

CVE-2024-37107

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions WishList Member X versions prior to 3.26.7
Description The issue is related to Improper Privilege Management, allowing Privilege Escalation in the Membership Software.
Recommendations For versions prior to 3.26.7, update to version 3.26.7 or later to resolve the issue.

Fix

Improper Privilege Management

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2024-37107

Affected Products

Wishlist Member