Lucene search
PRIOn knowledge basePRION:CVE-2023-1911HistoryMay 02, 2023 - 8:15 a.m.
Design/Logic Flaw
2023-05-0208:15:00
PRIOn knowledge base
www.prio-n.com
2
blocksy plugin
logic flaw
wordpress
access control
security issue
vulnerability
The Blocksy Companion WordPress plugin before 1.8.82 does not ensure that posts to be accessed via a shortcode are already public and can be viewed, allowing any authenticated users, such as subscriber to access draft posts for example
| CPE | Name | Operator | Version |
|---|---|---|---|
| blocksy_companion | lt | 1.8.82 |
Related
cvelist
cvelist
CVE-2023-1911 Blocksy Companion < 1.8.82 - Subscriber+ Draft Post Access
2023-05-02 07:04:59
wpexploit
wpexploit
Blocksy Companion < 1.8.82 - Subscriber+ Draft Post Access
2023-04-10 00:00:00
cve
cve
CVE-2023-1911
2023-05-02 08:15:10
wpvulndb
wpvulndb
Blocksy Companion < 1.8.82 - Subscriber+ Draft Post Access
2023-04-10 00:00:00
nvd
nvd
CVE-2023-1911
2023-05-02 08:15:10
wordfence
wordfence