CVE-2024-37470
CVSS V2 None
CVSS V3 None
Description
Missing Authorization vulnerability in WofficeIO Woffice Core allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Woffice Core: from n/a through 5.4.8.
Overview
- CVE ID
- CVE-2024-37470
- Assigner
- Patchstack
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-11-01T14:18:18.082Z
- Last Modified Date
- 2024-11-01T18:04:50.067Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://patchstack.com/database/vulnerability/woffice-core/wordpress-woffice-core-plugin-5-4-8-unauthenticated-broken-access-control-vulnerability?_s_id=cve | vdb-entry |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-37470 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37470 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-11-02 13:15:47 | Added to TrackCVE |