Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistWPScanCVELIST:CVE-2023-6139
HistoryJan 08, 2024 - 7:00 p.m.

CVE-2023-6139 Essential Real Estate < 4.4.0 - Subscriber+ Denial of Service via Arbitrary Option Update

2024-01-0819:00:31
WPScan
www.cve.org
cve-2023-6139
denial of service
wordpress

0.0004 Low

EPSS

Percentile

13.4%

JSON

The Essential Real Estate WordPress plugin before 4.4.0 does not apply proper capability checks on its AJAX actions, which among other things, allow attackers with a subscriber account to conduct Denial of Service attacks.

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "Essential Real Estate",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "4.4.0"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]

Related

wpvulndb 1
nvd 1
prion 1
cve 1
wpexploit 1
wpvulndb
wpvulndb
Essential Real Estate < 4.4.0 - Subscriber+ Denial of Service via Arbitrary Option Update
2023-12-18 00:00:00
nvd
nvd
CVE-2023-6139
2024-01-08 19:15:09
prion
prion
Design/Logic Flaw
2024-01-08 19:15:00
cve
cve
CVE-2023-6139
2024-01-08 19:15:09
wpexploit
wpexploit
Essential Real Estate < 4.4.0 - Subscriber+ Denial of Service via Arbitrary Option Update
2023-12-18 00:00:00

0.0004 Low

EPSS

Percentile

13.4%

JSON
Related for CVELIST:CVE-2023-6139
wpvulndb1nvd1prion1cve1wpexploit1