cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score CVE-2024-0683,https://securityvulnerability.io/vulnerability/CVE-2024-0683,Unauthorized Access Vulnerability in Bulgarisation Plugin for WordPress,"The Bulgarisation for WooCommerce plugin for WordPress has a security vulnerability that allows unauthorized access due to insufficient capability checks on multiple functions. This affects all versions up to and including 3.0.14, enabling both unauthenticated and authenticated attackers with subscriber-level access or higher to create and delete labels within the application. This weakness poses a considerable risk to users of the plugin, potentially compromising the integrity of the WooCommerce environment.",Wordpress,Bulgarisation For WooCommerce,7.3,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-03-13T15:27:12.649Z,0 CVE-2024-2395,https://securityvulnerability.io/vulnerability/CVE-2024-2395,Cross-Site Request Forgery Vulnerability in WooCommerce Plugin,"The Bulgarisation for WooCommerce plugin for WordPress is susceptible to Cross-Site Request Forgery due to the lack of appropriate nonce validation across multiple functions. This vulnerability can be exploited by unauthenticated attackers who can potentially trick site administrators into executing unintended actions, such as generating or deleting labels, through malicious links.",Wordpress,Bulgarisation For WooCommerce,4.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-03-12T21:34:33.129Z,0