CVE-2023-32299
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Dec 9, 2024
CWE ID 862
Summary
CVE-2023-32299 refers to a Missing Authorization vulnerability found in the Ni WooCommerce Sales Report plugin. This issue stems from inadequately configured access control security levels, which can be exploited. The vulnerability affects Ni WooCommerce Sales Report versions from n/a through 3.7.3. Successful exploitation could result in unauthorized access or modification to the affected WordPress site. Users are advised to upgrade to the latest version of the plugin or consider implementing additional security measures to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share