CVE-2024-43923

Missing Authorization vulnerability in Arraytics Timetics allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Timetics: from n/a through 1.0.23.
Configurations

Configuration 1 (hide)

cpe:2.3:a:arraytics:wp_timetics:*:*:*:*:*:wordpress:*:*

History

13 Nov 2024, 01:24

Type Values Removed Values Added
CPE cpe:2.3:a:arraytics:wp_timetics:*:*:*:*:*:wordpress:*:*
CVSS v2 : unknown
v3 : 5.3
v2 : unknown
v3 : 9.8
Summary
  • (es) Vulnerabilidad de autorización faltante en Arraytics Timetics permite acceder a funcionalidades que no están correctamente restringidas por las ACL. Este problema afecta a Timetics: desde n/a hasta 1.0.23.
References () https://patchstack.com/database/vulnerability/timetics/wordpress-timetics-plugin-1-0-23-broken-access-control-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/timetics/wordpress-timetics-plugin-1-0-23-broken-access-control-vulnerability?_s_id=cve - Third Party Advisory
First Time Arraytics
Arraytics wp Timetics

01 Nov 2024, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-01 15:15

Updated : 2024-11-13 01:24


NVD link : CVE-2024-43923

Mitre link : CVE-2024-43923

CVE.ORG link : CVE-2024-43923


JSON object : View

Products Affected

arraytics

  • wp_timetics
CWE
CWE-862

Missing Authorization