Vulnerabilities > Tmsproducts

DATE CVE VULNERABILITY TITLE RISK
2024-09-05 CVE-2024-6332 Missing Authorization vulnerability in Tmsproducts Amelia
The Booking for Appointments and Events Calendar – Amelia Premium and Lite plugins for WordPress are vulnerable to unauthorized access of data due to a missing capability check on the 'ameliaButtonCommand' function in all versions up to, and including, Premium 7.7 and Lite 1.2.3.
network
low complexity
tmsproducts CWE-862
6.5