CVE-2024-49680Missing Authorization in WP VR

CWE-862Missing Authorization3 documents3 sources
Severity
N/A
No vector
EPSS
0.2%
top 64.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Rextheme WP VR
Timeline
PublishedNov 19

Description

Missing Authorization vulnerability in RexTheme WP VR wpvr allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP VR: from n/a through <= 8.5.5.

Affected Packages1 packages

CVEListV5rextheme/wp_vr8.5.5

🔴Vulnerability Details

2
CVEList
WordPress WP VR plugin <= 8.5.5 - Broken Access Control vulnerability2024-11-19
GHSA
GHSA-c3rv-gq44-hm8f: Missing Authorization vulnerability in Rextheme WP VR allows Exploiting Incorrectly Configured Access Control Security Levels2024-11-19
CVE-2024-49680 — Missing Authorization in WP VR | cvebase