Security Advisory

CVE-2020-9392

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-23 16:14:51

Last updated 2024-08-04 10:26:16

Assigner mitre

State PUBLISHED

Description

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. Because there is no permission check on the ImportJSONTable, createFromTpl, and getJSONExportTable endpoints, unauthenticated users can retrieve pricing table information, create new tables, or import/modify a table.

← Browse all CVEs View on cve.org ↗