Vulnerabilities > CVE-2024-47318 - Missing Authorization vulnerability in Magazine3 PWA for WP & AMP

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

magazine3

CWE-862

NVD

Published: 2024-11-01

Updated: 2024-11-12

Summary

Missing Authorization vulnerability in Magazine3 PWA for WP & AMP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PWA for WP & AMP: from n/a through 1.7.72.

Vulnerable Configurations

Part	Description	Count
Application	Magazine3 Magazine3 PWA FOR WP & AMP 1.0 Magazine3 PWA FOR WP & AMP 1.0.1 Magazine3 PWA FOR WP & AMP 1.0.2 Magazine3 PWA FOR WP & AMP 1.0.3 Magazine3 PWA FOR WP & AMP 1.0.3.1 Magazine3 PWA FOR WP & AMP 1.0.4 Magazine3 PWA FOR WP & AMP 1.0.5 Magazine3 PWA FOR WP & AMP 1.0.6 Magazine3 PWA FOR WP & AMP 1.0.7 Magazine3 PWA FOR WP & AMP 1.0.7.1 Magazine3 PWA FOR WP & AMP 1.0.8 Magazine3 PWA FOR WP & AMP 1.0.9 Magazine3 PWA FOR WP & AMP 1.1 Magazine3 PWA FOR WP & AMP 1.2 Magazine3 PWA FOR WP & AMP 1.2.1 Magazine3 PWA FOR WP & AMP 1.3 Magazine3 PWA FOR WP & AMP 1.3.1 Magazine3 PWA FOR WP & AMP 1.3.2 Magazine3 PWA FOR WP & AMP 1.4 Magazine3 PWA FOR WP & AMP 1.5 Magazine3 PWA FOR WP & AMP 1.5.1 Magazine3 PWA FOR WP & AMP 1.6 Magazine3 PWA FOR WP & AMP 1.7 Magazine3 PWA FOR WP & AMP 1.7.1 Magazine3 PWA FOR WP & AMP 1.7.1.1 Magazine3 PWA FOR WP & AMP 1.7.1.2 Magazine3 PWA FOR WP & AMP 1.7.2 Magazine3 PWA FOR WP & AMP 1.7.2.1 Magazine3 PWA FOR WP & AMP 1.7.3 Magazine3 PWA FOR WP & AMP 1.7.3.1 Magazine3 PWA FOR WP & AMP 1.7.3.2 Magazine3 PWA FOR WP & AMP 1.7.3.3 Magazine3 PWA FOR WP & AMP 1.7.4 Magazine3 PWA FOR WP & AMP 1.7.4.1 Magazine3 PWA FOR WP & AMP 1.7.4.2 Magazine3 PWA FOR WP & AMP 1.7.4.3 Magazine3 PWA FOR WP & AMP 1.7.4.4 Magazine3 PWA FOR WP & AMP 1.7.5 Magazine3 PWA FOR WP & AMP 1.7.6 Magazine3 PWA FOR WP & AMP 1.7.7 Magazine3 PWA FOR WP & AMP 1.7.8 Magazine3 PWA FOR WP & AMP 1.7.8.1 Magazine3 PWA FOR WP & AMP 1.7.9 Magazine3 PWA FOR WP & AMP 1.7.9.1 Magazine3 PWA FOR WP & AMP 1.7.9.2 Magazine3 PWA FOR WP & AMP 1.7.9.3 Magazine3 PWA FOR WP & AMP 1.7.9.3.1 Magazine3 PWA FOR WP & AMP 1.7.9.3.2 Magazine3 PWA FOR WP & AMP 1.7.10 Magazine3 PWA FOR WP & AMP 1.7.11 Magazine3 PWA FOR WP & AMP 1.7.11.1 Magazine3 PWA FOR WP & AMP 1.7.12 Magazine3 PWA FOR WP & AMP 1.7.13 Magazine3 PWA FOR WP & AMP 1.7.14 Magazine3 PWA FOR WP & AMP 1.7.14.1 Magazine3 PWA FOR WP & AMP 1.7.15 Magazine3 PWA FOR WP & AMP 1.7.16 Magazine3 PWA FOR WP & AMP 1.7.16.1 Magazine3 PWA FOR WP & AMP 1.7.17 Magazine3 PWA FOR WP & AMP 1.7.17.1 Magazine3 PWA FOR WP & AMP 1.7.17.2 Magazine3 PWA FOR WP & AMP 1.7.18 Magazine3 PWA FOR WP & AMP 1.7.18.1 Magazine3 PWA FOR WP & AMP 1.7.19 Magazine3 PWA FOR WP & AMP 1.7.20 Magazine3 PWA FOR WP & AMP 1.7.21 Magazine3 PWA FOR WP & AMP 1.7.22 Magazine3 PWA FOR WP & AMP 1.7.23 Magazine3 PWA FOR WP & AMP 1.7.24 Magazine3 PWA FOR WP & AMP 1.7.25 Magazine3 PWA FOR WP & AMP 1.7.26 Magazine3 PWA FOR WP & AMP 1.7.27 Magazine3 PWA FOR WP & AMP 1.7.28 Magazine3 PWA FOR WP & AMP 1.7.29 Magazine3 PWA FOR WP & AMP 1.7.30 Magazine3 PWA FOR WP & AMP 1.7.31 Magazine3 PWA FOR WP & AMP 1.7.32 Magazine3 PWA FOR WP & AMP 1.7.33 Magazine3 PWA FOR WP & AMP 1.7.34 Magazine3 PWA FOR WP & AMP 1.7.35 Magazine3 PWA FOR WP & AMP 1.7.36 Magazine3 PWA FOR WP & AMP 1.7.38 Magazine3 PWA FOR WP & AMP 1.7.39 Magazine3 PWA FOR WP & AMP 1.7.40 Magazine3 PWA FOR WP & AMP 1.7.41 Magazine3 PWA FOR WP & AMP 1.7.45 Magazine3 PWA FOR WP & AMP 1.7.46 Magazine3 PWA FOR WP & AMP 1.7.47 Magazine3 PWA FOR WP & AMP 1.7.48 Magazine3 PWA FOR WP & AMP 1.7.49 Magazine3 PWA FOR WP & AMP 1.7.50 Magazine3 PWA FOR WP & AMP 1.7.51 Magazine3 PWA FOR WP & AMP 1.7.52 Magazine3 PWA FOR WP & AMP 1.7.53 Magazine3 PWA FOR WP & AMP 1.7.54 Magazine3 PWA FOR WP & AMP 1.7.55 Magazine3 PWA FOR WP & AMP 1.7.56 Magazine3 PWA FOR WP & AMP 1.7.57 Magazine3 PWA FOR WP & AMP 1.7.58 Magazine3 PWA FOR WP & AMP 1.7.59 Magazine3 PWA FOR WP & AMP 1.7.60	101

Common Weakness Enumeration (CWE)

CWE-862 - Missing Authorization

References

https://patchstack.com/database/vulnerability/pwa-for-wp/wordpress-pwa-for-wp-amp-plugin-1-7-72-broken-access-control-vulnerability?_s_id=cve