CVE-2023-6066 WP Custom Widget Area <= 1.2.5 - Subscriber+ Menus Creation/Deletion/Update

2024-01-1515:10:43

WPScan

www.cve.org

wordpress

plugin vulnerability

ajax action/callback

capability checks

nonce vulnerabilities

subscriber+ privilege

AI Score

Confidence

High

EPSS

Percentile

14.0%

JSON

The WP Custom Widget area WordPress plugin through 1.2.5 does not properly apply capability and nonce checks on any of its AJAX action callback functions, which could allow attackers with subscriber+ privilege to create, delete or modify menus on the site.

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "WP Custom Widget area",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThanOrEqual": "1.2.5"
      }
    ],
    "defaultStatus": "affected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]

References

wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623