Vulnerability CVE-2022-35242


Published: 2022-08-23

Description:
Unauthenticated plugin settings change vulnerability in 59sec THE Leads Management System: 59sec LITE plugin <= 3.4.1 at WordPress.

Type:

CWE-264

(Permissions, Privileges, and Access Controls)

 References:
https://wordpress.org/plugins/59sec-lite-contact-form-7-push-notifications-on-ios-and-android/
https://patchstack.com/database/vulnerability/59sec-lite-contact-form-7-push-notifications-on-ios-and-android/wordpress-the-leads-management-system-59sec-lite-plugin-3-4-1-unauthenticated-plugin-settings-change-vulnerability

Copyright 2023, cxsecurity.com

 

Back to Top