Lucene search
PatchstackCVELIST:CVE-2023-46148HistoryJun 19, 2024 - 11:13 a.m.
CVE-2023-46148 WordPress Themify Ultra theme <= 7.3.5 - Authenticated Arbitrary Settings Change vulnerability
2024-06-1911:13:30
CWE-862
Patchstack
www.cve.org
5
wordpress
themify ultra
vulnerability
authenticated
arbitrary settings change
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
20.0%
Missing Authorization vulnerability in Themify Themify Ultra.This issue affects Themify Ultra: from n/a through 7.3.5.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Themify Ultra",
"vendor": "Themify",
"versions": [
{
"changes": [
{
"at": "7.3.6",
"status": "unaffected"
}
],
"lessThanOrEqual": "7.3.5",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Themify Ultra < 7.3.6 - Missing Authorization
2023-11-23 00:00:00
vulnrichment
vulnrichment
cve
cve
CVE-2023-46148
2024-06-19 12:15:11
nvd
nvd
CVE-2023-46148
2024-06-19 12:15:11
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
20.0%
Related for CVELIST:CVE-2023-46148