[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fkKeaeOgF95xlfY70x49ToARoBVscdrPpJ_K-uFuMSJI":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2023-41686","woocommerce-support-system-missing-authorization","Woocommerce Support System \u003C= 1.2.2 - Missing Authorization","The Woocommerce Support System plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to missing capability checks on several functions hook via 'init', 'admin_init', and AJAX actions in versions up to, and including, 1.2.2. This makes it possible for unauthenticated attackers to perform a variety of actions such as modifying and deleting user tickets, editing settings, and more.","wc-support-system",null,"\u003C=1.2.2","1.2.3","high",7.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L","Missing Authorization","2023-09-04 00:00:00","2024-05-15 17:54:22",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F8004a306-4c8f-40e9-accc-a12d65b5f2f9?source=api-prod",255]