cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12617,https://securityvulnerability.io/vulnerability/CVE-2024-12617,Unauthorized Access Exploit in WC Price History Plugin for WordPress,"The WC Price History for Omnibus plugin utilized in WordPress has a significant security flaw that allows unauthorized access due to inadequate capability checks on several AJAX actions. This vulnerability affects all versions up to and including 2.1.3, enabling authenticated attackers with Subscriber-level access and above to view and even modify sensitive history data. The lack of proper validation mechanisms opens avenues for potential exploitation, making it crucial for site administrators to take prompt action to secure their installations.",Wordpress,Wc Price History For Omnibus,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-12-24T04:22:45.832Z,0