CVE-2024-24716 — Missing Authorization in Awesome Support

Severity

5.4MEDIUMNVD

EPSS

0.1%

top 76.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJun 9

Description

Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.6.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:LExploitability: 2.8 | Impact: 2.5

GHSA

GHSA-9jv6-43px-5ccm: Missing Authorization vulnerability in Awesome Support Team Awesome Support↗2024-06-09

▶

CVEList

WordPress Awesome Support plugin <= 6.1.6 - Broken Access Control vulnerability↗2024-06-09

▶