CVE-2024-32509
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Apr 17, 2024
CWE ID 862
Summary
CVE-2024-32509 is a security vulnerability affecting the Loopus WP Cost Estimation & Payment Forms Builder plugin. The issue involves missing authorization checks, allowing unauthorized users to access and modify cost estimations and payment forms. This vulnerability can potentially lead to financial loss and data manipulation. The affected versions of the plugin range from n/a to 10.1.76. It is highly recommended that users update to the latest, secure version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share