CVE-2024-8513

CVSS V2 None CVSS V3 None
Description
The QA Analytics – Web Analytics Tool with Heatmaps & Session Replay Across All Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_save_plugin_config() function in all versions up to, and including, 4.1.0.0. This makes it possible for unauthenticated attackers to update the plugin's settings.
Overview
  • CVE ID
  • CVE-2024-8513
  • Assigner
  • Wordfence
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-10-10T02:06:04.718Z
  • Last Modified Date
  • 2024-10-10T02:06:04.718Z
History
Created Old Value New Value Data Type Notes
2024-10-10 13:15:20 Added to TrackCVE