Medium severity6.5NVD Advisory· Published Nov 1, 2024· Updated Jun 17, 2026No known patch
CVE-2024-43980
No known patch is available for this vulnerability.
The affected theme has not been updated on WordPress.org since before this CVE was disclosed; the latest installable version is still vulnerable. If you have the affected software installed, you should uninstall or replace it rather than wait for an update.
CVE-2024-43980
Description
Missing Authorization vulnerability in CozyThemes Fota WP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fota WP: from n/a through 1.4.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.4.1+ 1 more
- (no CPE)range: <=1.4.1
- (no CPE)range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.