CVE Catalog
CVE-2024-37496
MediumCVSS 4.3Summary
Metro Magazine by Rara Themes has a missing authorization vulnerability that allows exploiting incorrectly configured access control security levels.
Risk Assessment
Organizations may be exposed to unauthorized access to resources, potentially leading to data leaks or other serious security incidents.
Recommendation
It is recommended to review and improve the configuration of access control levels in Metro Magazine to ensure proper user authorization.
Original NVD description (English source)
Missing Authorization vulnerability in Rara Themes Metro Magazine allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Metro Magazine: from n/a through 1.3.7.

