CVE-2023-48751

🗓️ 18 Dec 2023 23:44:36Reported by PatchstackType

CVE-2023-48751 Missing Authorization, CSRF vulnerability in Roland Barker, xnau webdesign Participants Databas

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2023-48751	20 Dec 202312:11	–	circl
CNNVD	WordPress Plugin Participants Database Security Vulnerability	18 Dec 202300:00	–	cnnvd
Cvelist	CVE-2023-48751 WordPress Participants Database Plugin <= 2.5.5 is vulnerable to Broken Access Control	18 Dec 202323:44	–	cvelist
EUVD	EUVD-2023-52784	3 Oct 202520:07	–	euvd
NVD	CVE-2023-48751	19 Dec 202300:15	–	nvd
OSV	CVE-2023-48751	19 Dec 202300:15	–	osv
Patchstack	WordPress Participants Database Plugin <= 2.5.5 is vulnerable to Broken Access Control	27 Nov 202300:00	–	patchstack
Prion	Cross site request forgery (csrf)	19 Dec 202300:15	–	prion
Positive Technologies	PT-2023-30938 · Unknown · Participants Database	18 Dec 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-48751	23 May 202504:41	–	redhatcve

NVD

Vulners

Node

xnau participants_databaseRange≤2.5.5wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "participants-database",
    "product": "Participants Database",
    "vendor": "Roland Barker, xnau webdesign",
    "versions": [
      {
        "changes": [
          {
            "at": "2.5.6",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.5.5",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/participants-database/wordpress-participants-database-plugin-2-5-5-broken-access-control-vulnerability

28 Apr 2026 19:22Current

8.4High risk

Vulners AI Score8.4

CVSS 3.14.3 - 8.8

EPSS0.00063

SSVC