Lucene search
HistoryJan 08, 2024 - 7:15 p.m.
CVE-2023-6042
cve-2023-6042
unauthenticated user
email vulnerability
admin access
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
43.9%
Any unauthenticated user may send e-mail from the site with any title or content to the admin
Affected configurations
Node
motopressgetwid_-_gutenberg_blocksRange<2.0.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| motopress | getwid_\-_gutenberg_blocks | * | cpe:2.3:a:motopress:getwid_\-_gutenberg_blocks:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Unknown",
"product": "Getwid",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "2.0.3"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
prion
prion
Code injection
2024-01-08 19:15:00
nvd
nvd
CVE-2023-6042
2024-01-08 19:15:09
wpexploit
wpexploit
Getwid < 2.0.3 - Unauthenticated Arbitrary Email Sending to Admin
2023-12-16 00:00:00
wpvulndb
wpvulndb
Getwid < 2.0.3 - Unauthenticated Arbitrary Email Sending to Admin
2023-12-16 00:00:00
cvelist
cvelist
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
43.9%
Related for CVE-2023-6042