Lucene search

CVE-2023-35040 WordPress SendPress Newsletters plugin <= 1.23.11.6 - Broken Access Control vulnerability

🗓️ 13 Jun 2024 23:45:51Reported by PatchstackType

CVE-2023-35040 WordPress SendPress Newsletters plugin Broken Access Control vulnerabilit

Reporter	Title	Published	Views	Family All 5
CVE	CVE-2023-35040	14 Jun 202400:15	–	cve
Vulnrichment	CVE-2023-35040 WordPress SendPress Newsletters plugin <= 1.23.11.6 - Broken Access Control vulnerability	13 Jun 202423:51	–	vulnrichment
Patchstack	WordPress SendPress Newsletters Plugin <= 1.23.11.6 is vulnerable to Broken Access Control	11 Aug 202300:00	–	patchstack
NVD	CVE-2023-35040	14 Jun 202400:15	–	nvd
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (August 7, 2023 to August 13, 2023)	17 Aug 202313:45	–	wordfence

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "sendpress",
    "product": "SendPress Newsletters",
    "vendor": "SendPress",
    "versions": [
      {
        "lessThanOrEqual": "1.23.11.6",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/sendpress/wordpress-sendpress-newsletters-plugin-1-22-3-31-broken-access-control-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jun 2024 23:51Current

CVSS35.3

EPSS0.00212

CWE-862