CVE-2024-43250

Incorrect Authorization vulnerability in Bit Apps Bit Form Pro bitformpro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bit Form Pro: from n/a through 2.6.4.
Configurations

Configuration 1 (hide)

cpe:2.3:a:bitapps:bit_form:*:*:*:*:pro:wordpress:*:*

History

06 Sep 2024, 16:02

Type Values Removed Values Added
First Time Bitapps
Bitapps bit Form
CPE cpe:2.3:a:bitapps:bit_form:*:*:*:*:pro:wordpress:*:*
CVSS v2 : unknown
v3 : 7.1
v2 : unknown
v3 : 6.5
References () https://patchstack.com/database/vulnerability/bitformpro/wordpress-bit-form-pro-plugin-2-6-4-authenticated-plugin-settings-change-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/bitformpro/wordpress-bit-form-pro-plugin-2-6-4-authenticated-plugin-settings-change-vulnerability?_s_id=cve - Third Party Advisory
Summary
  • (es) Vulnerabilidad de autorización incorrecta en Bit Apps Bit Form Pro bitformpro permite el acceso a la funcionalidad no restringida adecuadamente por las ACL. Este problema afecta a Bit Form Pro: desde n/a hasta 2.6.4.

19 Aug 2024, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-19 18:15

Updated : 2024-09-06 16:02


NVD link : CVE-2024-43250

Mitre link : CVE-2024-43250

CVE.ORG link : CVE-2024-43250


JSON object : View

Products Affected

bitapps

  • bit_form
CWE
CWE-863

Incorrect Authorization