{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T13:02:34.771","vulnerabilities":[{"cve":{"id":"CVE-2024-38740","sourceIdentifier":"audit@patchstack.com","published":"2024-11-01T15:15:33.560","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Missing Authorization vulnerability in Packlink Shipping S.L. Packlink PRO shipping module allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Packlink PRO shipping module: from n/a through 3.4.6."},{"lang":"es","value":"Vulnerabilidad de autorización faltante en Packlink Shipping SL El módulo de envío Packlink PRO permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta al módulo de envío Packlink PRO: desde n/a hasta 3.4.6."}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":2.5}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Secondary","description":[{"lang":"en","value":"CWE-862"}]}],"references":[{"url":"https://patchstack.com/database/vulnerability/packlink-pro-shipping/wordpress-packlink-pro-shipping-module-plugin-3-4-8-broken-access-control-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}}]}