Lucene search
HistoryApr 25, 2024 - 9:15 a.m.
CVE-2023-51482
eazyplugins
eazy plugin manager
improper authentication
vulnerability
access control lists
acls
CVSS3
9.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0
Percentile
9.0%
Improper Authentication vulnerability in EazyPlugins Eazy Plugin Manager allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Eazy Plugin Manager: from n/a through 4.1.2.
Related
cve
cve
CVE-2023-51482
2024-04-25 09:15:06
cvelist
cvelist
vulnrichment
vulnrichment
wpvulndb
wpvulndb
Eazy Plugin Manager < 4.1.3 - Missing Authorization via update_options
2024-01-05 00:00:00
wordfence
wordfence
CVSS3
9.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2023-51482