[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fDkKjx7pTvVmUcCgf-MMbbsvbTLdOnEPY9BlayIhHgPI":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2024-24835","bear-missing-authorization-via-several-functions","BEAR \u003C= 1.1.4 - Missing Authorization via Several Functions","The BEAR plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in the \u002Fext\u002Fhistory\u002Fhistory.php  file in versions up to, and including, 1.1.4. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform several unauthorized actions.","woo-bulk-editor",null,"\u003C=1.1.4","1.1.4.1","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2024-02-02 00:00:00","2024-02-05 18:15:42",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F411b7889-c2c6-48cb-967d-091585705e17?source=api-prod",4]