4 matches found
CVE-2023-48751
Missing Authorization, Cross-Site Request Forgery CSRF vulnerability in Roland Barker, xnau webdesign Participants Database allows Accessing Functionality Not Properly Constrained by ACLs, Cross Site Request Forgery.This issue affects Participants Database: from n/a through 2.5.5...
CVE-2023-48751
Missing Authorization, Cross-Site Request Forgery CSRF vulnerability in Roland Barker, xnau webdesign Participants Database allows Accessing Functionality Not Properly Constrained by ACLs, Cross Site Request Forgery.This issue affects Participants Database: from n/a through 2.5.5...
CVE-2023-48751
CVE-2023-48751 affects the WordPress plugin Participants Database (WordPress plugin). Affected versions are
WordPress Participants Database Plugin <= 2.5.5 is vulnerable to Broken Access Control
Software Participants Database Type Plugin Vulnerable versions = 2.5.5 Fixed in 2.5.6 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48751 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 4e4f72b6b27f Credits Yudistira Arya...