API - CVE CyberSecurity Database News (Page 96)

Jan 2, 2025 WordPress API API Security Exploit

CVE-2023-47241 - Exploiting Missing Authorization in CoCart – Headless Ecommerce (Access Control Flaw Explored)

CoCart is a popular headless eCommerce solution for WordPress that allows developers to handle WooCommerce stores via a REST API. But even the best tools

Jan 2, 2025 WordPress API Exploit PHP

CVE-2023-47183 - How a Missing Authorization Vulnerability in GiveWP Exposes Your Donations

GiveWP is one of the most popular WordPress plugins for managing donations, used by nonprofits, charities, and individual fundraisers worldwide. If your website relies on

Jan 2, 2025 WordPress API Exploit

CVE-2023-47179 - How Missing Authorization in WooODT Lite Puts Your WooCommerce Store at Risk (With Example Exploit)

--- What is CVE-2023-47179? CVE-2023-47179 is a security vulnerability found in the popular ByConsole WooODT Lite WordPress plugin, affecting versions up to and including 2.

Jan 2, 2025 API Exploit

CVE-2023-46612 - How Missing Authorization in Codedrafty Mediabay (≤1.6) Exposes Your Files — Full Exploit Details

In late 2023, a Missing Authorization vulnerability was discovered in Codedrafty Mediabay, an open-source media management add-on. Identified as CVE-2023-46612, this flaw allows attackers to

Jan 2, 2025 API Exploit PHP

CVE-2023-46606 - Exploiting AtomChat’s Missing Authorization Leading to Data Exposure (Exploit Details & Fix)

--- What is CVE-2023-46606? CVE-2023-46606 is a critical vulnerability found in AtomChat (versions through 1.1.4). AtomChat is a popular chat solution integrated into