Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-3365

Disclosure Date: August 07, 2023 (last updated October 08, 2023)
The MultiParcels Shipping For WooCommerce WordPress plugin before 1.14.14 does not have authorisation when deleting shipment, allowing any authenticated users, such as subscriber to delete arbitrary shipment
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0