cleantalk
Vulnerabilities and Security Researches

Schema App Structured Data, f7767594114ab4f30b2cf84528de542934d034ae

CVE, Research URL

f7767594114ab4f30b2cf84528de542934d034ae

Home page URL

Security reports for Schema App Structured Data

Application

Schema App Structured Data

Published on
Sep 27, 2023
Research Description
Schema App Structured Data [schema-app-structured-data-for-schemaorg] < 1.22.4 WordPress Schema App Structured Data Plugin <= 1.22.3 is vulnerable to Broken Access Control No patched version is available. No reply from the vendor. Rio Darmawan discovered and reported this Broken Access Control vulnerability in WordPress Schema App Structured Data Plugin. A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action. This vulnerability has not been known to be fixed yet.
Affected versions
Min -, max 1.22.4.
Status
vulnerable
Previous vulnerability researches
Schema App Structured Data (CVE-2023-44258) , Jun 10, 2024
Schema App Structured Data (CVE-2024-0893) , Jun 06, 2024
Schema App Structured Data (f7767594114ab4f30b2cf84528de542934d034ae) , Jun 06, 2024
Schema App Structured Data (CVE-2024-0892) , Jun 16, 2024
Schema App Structured Data (CVE-2024-11279) , Dec 13, 2024
New vulnerability
Relevanssi &#8211; A Better Search (CVE-2025-4396) , May 13, 2025
MailPoet &#8211; Newsletters, Email Marketing, and Automation (CVE-2024-12743) , May 13, 2025
Email Marketing, Email Automation &amp; Newsletter for WordPress &amp; WooCommerce – Mail Mint (CVE-2025-47541) , May 13, 2025
Remote Images Grabber (CVE-2025-4434) , May 13, 2025
Ditty – Responsive News Tickers, Sliders, and Lists (CVE-2024-13357) , May 13, 2025