{"vulnerability": "CVE-2024-6636", "sightings": [{"uuid": "7bb9af47-3621-4da4-a353-39662adf3c57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-6636", "type": "seen", "source": "https://t.me/cvedetector/1248", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-6636 - WooCommerce Social Login Unauthenticated Data Modification Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-6636 \nPublished : July 20, 2024, 8:15 a.m. | 43\u00a0minutes ago \nDescription : The WooCommerce - Social Login plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'woo_slg_login_email' function in all versions up to, and including, 2.7.3. This makes it possible for unauthenticated attackers to change the default role to Administrator while registering for an account. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-20T11:26:26.000000Z"}, {"uuid": "b2a88e6b-8d04-421d-a3e8-f0b94b1627ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-6636", "type": "seen", "source": "Telegram/M_we_HcOzntS32wwlTuMwX35qtS5YrvDn7ODjeo59LqHURhw", "content": "", "creation_timestamp": "2025-02-14T10:03:09.000000Z"}]}