Missing Authorization vulnerability in Woo product importer
CVE-2024-32724
7.5HIGH
Key Information
- Vendor
- Woo Product Importer
- Status
- Sharkdropship Dropshipping For Aliexpress, Ebay, Amazon, Etsy
- Vendor
- CVE Published:
- 14 May 2024
Summary
Missing Authorization vulnerability in Woo product importer Sharkdropship dropshipping for Aliexpress, eBay, Amazon, etsy.This issue affects Sharkdropship dropshipping for Aliexpress, eBay, Amazon, etsy: from n/a through 2.1.1.
Affected Version(s)
Sharkdropship dropshipping for Aliexpress, eBay, Amazon, etsy <= 2.1.1
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database
Credit
Emili Castells (Patchstack Alliance)