Lucene search
PatchstackCVELIST:CVE-2023-36683HistoryJun 19, 2024 - 1:51 p.m.
CVE-2023-36683 WordPress Schema Pro plugin <= 2.7.8 - Broken Access Control vulnerability
2024-06-1913:51:27
CWE-862
Patchstack
www.cve.org
5
wordpress
schema pro
broken access control
missing authorization
cve-2023-36683
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
9.1%
Missing Authorization vulnerability in WP SCHEMA PRO Schema Pro.This issue affects Schema Pro: from n/a through 2.7.8.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Schema Pro",
"vendor": "WP SCHEMA PRO",
"versions": [
{
"changes": [
{
"at": "2.7.9",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.7.8",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-36683
2024-06-19 14:15:12
cve
cve
CVE-2023-36683
2024-06-19 14:15:12
vulnrichment
vulnrichment
wordfence
wordfence
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2023-36683