Lucene search
HistoryMay 17, 2024 - 7:16 a.m.
CVE-2023-41957
organization
security
problem
publicized
details
nvd
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L
6.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Improper Privilege Management vulnerability in smp7, wp.Insider Simple Membership allows Privilege Escalation.This issue affects Simple Membership: from n/a through 4.3.4.
Affected configurations
Node
smp7\,_wp.insidersimple_membershipRange≤4.3.4
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "simple-membership",
"product": "Simple Membership",
"vendor": "smp7, wp.insider",
"versions": [
{
"changes": [
{
"at": "4.3.5",
"status": "unaffected"
}
],
"lessThanOrEqual": "4.3.4",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Simple Membership < 4.3.5 - Privilege escalation via Registration
2023-11-24 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2023-41957
2024-05-17 07:16:00
vulnrichment
vulnrichment
nessus
nessus
Simple Membership Plugin For WordPress < 4.3.5 Multiple Vulnerabilities
2023-10-05 00:00:00
wordfence
wordfence
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L
6.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Related for CVE-2023-41957