Vulnerabilities > CVE-2024-56266 - Missing Authorization vulnerability in Sonaar MP3 Audio Player for Music, Radio & Podcast

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

sonaar

CWE-862

NVD

Published: 2025-01-02

Updated: 2025-01-22

Summary

Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.8.

Vulnerable Configurations

Part	Description	Count
Application	Sonaar Sonaar MP3 Audio Player FOR Music, Radio & Podcast - Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.0 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.1.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.4 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.4.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.4.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 1.5 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.0 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.0.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.0.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.2.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.2.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.2.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.2.4 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.3.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.3.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.4 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.4.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.4.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 2.4.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.0 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.0.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.0.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.2.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.4 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.5 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 3.6 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.0 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.1.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.1.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.3.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.4 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.4.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.5 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.5.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.6.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.6.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.7 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.8 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.8.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.9 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.10 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 4.10.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.0 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.0.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.0.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.0.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.1.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.3 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.4 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.4.0.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.4.0.2 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.5 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.6 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.7 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.7.0.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.7.1 Sonaar MP3 Audio Player FOR Music, Radio & Podcast 5.8	72

Common Weakness Enumeration (CWE)

CWE-862 - Missing Authorization

References

https://patchstack.com/database/wordpress/plugin/mp3-music-player-by-sonaar/vulnerability/wordpress-mp3-audio-player-plugin-5-8-broken-access-control-vulnerability?_s_id=cve