{
  "id": "CVE-2024-1310",
  "sourceIdentifier": "contact@wpscan.com",
  "published": "2024-04-15T05:15:14.857",
  "lastModified": "2024-04-15T13:15:31.997",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The WooCommerce WordPress plugin before 8.6 does not prevent users with at least the contributor role from leaking products they shouldn't have access to. (e.g. private, draft and trashed products)"
    },
    {
      "lang": "es",
      "value": "El complemento WooCommerce WordPress anterior a 8.6 no impide que los usuarios con al menos el rol de colaborador filtren productos a los que no deber\u00edan tener acceso. (por ejemplo, productos privados, borradores y desechados)"
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://wpscan.com/vulnerability/a7735feb-876e-461c-9a56-ea6067faf277/",
      "source": "contact@wpscan.com"
    }
  ]
}