Lucene search
PatchstackCVELIST:CVE-2023-51672HistoryMar 21, 2024 - 5:25 p.m.
CVE-2023-51672 WordPress FunnelKit Checkout plugin <= 3.10.3 - Unauthenticated Arbitrary Post/Page Deletion vulnerability
2024-03-2117:25:36
CWE-862
Patchstack
www.cve.org
3
wordpress
funnelkit
checkout
unauthenticated
arbitrary
deletion
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit Checkout: from n/a through 3.10.3.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "FunnelKit Checkout",
"vendor": "FunnelKit",
"versions": [
{
"changes": [
{
"at": "3.11.0",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.10.3",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-51672
2024-04-11 01:22:45
vulnrichment
vulnrichment
wpvulndb
wpvulndb
FunnelKit Checkout < 3.11.0 - Unauthenticated Arbitrary Content Deletion
2024-01-03 00:00:00
cve
cve
CVE-2023-51672
2024-04-11 01:22:45
wordfence
wordfence
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Related for CVELIST:CVE-2023-51672