The vulnerability identified as CVE-2024-32691 concerns a missing authorization check (CWE-862) in the realmag777 Active Products Tables for WooCommerce plugin, versions up to 1.0.6.2. This issue permits unauthenticated remote attackers to access certain features or data that should require authorization. The CVSS 3.1 vector indicates the attack can be performed remotely without privileges or user interaction, with limited confidentiality impact and no integrity or availability impact. No official fix or patch has been published by the vendor as of the publication date. The vulnerability is publicly known but not yet exploited in the wild.

The vulnerability allows unauthorized remote attackers to access data or functionality without proper authorization, potentially exposing some information. The impact is limited to confidentiality with no effect on data integrity or system availability. Given the medium CVSS score of 5.3, the risk is moderate but should be addressed to prevent unauthorized data exposure.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or patch is currently available, users should monitor updates from the realmag777 plugin vendor or the WooCommerce plugin repository. Until a patch is released, consider restricting access to the affected plugin features or disabling the plugin if feasible to reduce exposure.