Lucene search
PatchstackCVE-2023-47827HistoryNov 30, 2023 - 2:15 p.m.
CVE-2023-47827
2023-11-3014:15:10
CWE-863
Patchstack
web.nvd.nist.gov
30
cve-2023-47827
incorrect authorization
nicheaddons
events addon
elementor
acls
vulnerability
security
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
17.8%
Incorrect Authorization vulnerability in NicheAddons Events Addon for Elementor allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Events Addon for Elementor: from n/a through 2.1.3.
Affected configurations
Node
nicheaddonsevents_addon_for_elementorRange<2.1.4wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nicheaddons | events_addon_for_elementor | * | cpe:2.3:a:nicheaddons:events_addon_for_elementor:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "events-addon-for-elementor",
"product": "Events Addon for Elementor",
"vendor": "NicheAddons",
"versions": [
{
"changes": [
{
"at": "2.1.4",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.1.3",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2023-47827
2023-11-30 14:15:10
wpvulndb
wpvulndb
Events Addon for Elementor < 2.1.3 - Missing Authorization
2023-12-23 00:00:00
prion
prion
Authorization
2023-11-30 14:15:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
17.8%
Related for CVE-2023-47827