CVE-2023-7292 - Mollie Paytium WordPress Missing Capability Check - Unauthorized Notification Dismissal Vulnerability

1 month ago 14
ARTICLE AD BOX
CVE ID : CVE-2023-7292
Published : Oct. 16, 2024, 7:15 a.m. | 24 minutes ago
Description : The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized notification dismissal due to a missing capability check on the paytium_notice_dismiss function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with subscriber-level access to dismiss admin notices.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article