Lucene search

K
patchstackRafshanzani SuhadaPATCHSTACK:869D438EB6E8A806CD6AD6AF7E27A439
HistoryJun 22, 2023 - 12:00 a.m.

WordPress Spam protection, AntiSpam, FireWall by CleanTalk Plugin <= 6.10 is vulnerable to Broken Access Control

2023-06-2200:00:00
Rafshanzani Suhada
patchstack.com
1
wordpress antispam cleantalk
vulnerable version 6.10
access control

AI Score

6.3

Confidence

High

Software

Spam protection, AntiSpam, FireWall by CleanTalk

Type

Plugin

Vulnerable versions

<= 6.10

Fixed in

6.11

OWASP Top 10

A5: Broken Access Control

Classification

Broken Access Control

CVE

CVE-2023-33996

Patch priority

High

CVSS severity

High (8.8)

Developer

Claim ownership

PSID

b4ca9dd06551

Credits

Rafshanzani Suhada Rafshanzani Suhada

Required privilege

Subscriber

Published

22 June, 2023

Remove and replace plugin Expand full details Have additional information or questions about this entry? Let us know.

Solution

We advise to mitigate or resolve the vulnerability immediately.

Affected configurations

Vulners
Node
сleantalk_–_anti-spam_protectionspam_protection\,_antispam\,_firewall_by_cleantalkRange6.10
VendorProductVersionCPE
сleantalk_–_anti-spam_protectionspam_protection\,_antispam\,_firewall_by_cleantalk*cpe:2.3:a:сleantalk_–_anti-spam_protection:spam_protection\,_antispam\,_firewall_by_cleantalk:*:*:*:*:*:*:*:*

AI Score

6.3

Confidence

High

Related for PATCHSTACK:869D438EB6E8A806CD6AD6AF7E27A439