Lucene search
PatchstackCVE-2023-52220HistoryApr 25, 2024 - 10:15 a.m.
CVE-2023-52220
2024-04-2510:15:08
CWE-862
Patchstack
web.nvd.nist.gov
95
cve-2023-52220
organization
individual
security problem
publicized
nvd
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
AI Score
4.7
Confidence
High
EPSS
0
Percentile
9.0%
Missing Authorization vulnerability in MonsterInsights Google Analytics by Monster Insights.This issue affects Google Analytics by Monster Insights: from n/a through 8.21.0.
Affected configurations
Node
monsterinsightsgoogle_analytics_dashboardRange≤8.21.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| monsterinsights | google_analytics_dashboard | * | cpe:2.3:a:monsterinsights:google_analytics_dashboard:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "google-analytics-for-wordpress",
"product": "Google Analytics by Monster Insights",
"vendor": "MonsterInsights",
"versions": [
{
"changes": [
{
"at": "8.22.0",
"status": "unaffected"
}
],
"lessThanOrEqual": "8.21.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
cvelist
cvelist
nvd
nvd
CVE-2023-52220
2024-04-25 10:15:08
wpvulndb
wpvulndb
Google Analytics by Monster Insights < 8.22.0 - Missing Authorization
2024-01-12 00:00:00
wordfence
wordfence
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
AI Score
4.7
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2023-52220