Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:6 a.m.7 views

CVE-2023-5426

The Post Meta Data Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pmdmwpdeleteusermeta, pmdmwpdeletetermmeta, and pmdmwpajaxdeletemeta functions in versions up to, and including, 1.2.0. This makes it possible for...

7.5CVSS6.8AI score0.00468EPSS
Exploits0References1
Circl
Circl
added 2023/10/28 4:17 p.m.4 views

CVE-2023-5426

creationtimestamp| type| source ---|---|--- 2023-10-28 16:17:49+00:00| seen| https://t.me/cibsecurity/73106...

7.5CVSS7.2AI score0.00468EPSS
Exploits0References1
NVD
NVD
added 2023/10/28 12:15 p.m.11 views

CVE-2023-5426

The Post Meta Data Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pmdmwpdeleteusermeta, pmdmwpdeletetermmeta, and pmdmwpajaxdeletemeta functions in versions up to, and including, 1.2.0. This makes it possible for...

7.5CVSS7.4AI score0.00468EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/10/27 12:0 a.m.17 views

WordPress Post Meta Data Manager Plugin <= 1.2.0 is vulnerable to Broken Access Control

Software Post Meta Data Manager Type Plugin Vulnerable versions = 1.2.0 Fixed in 1.2.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-5426 Patch priority Medium CVSS severity Medium 7.5 Developer Claim ownership PSID a003d34ca1b2 Credits Francesco Carlucc...

7.5CVSS6.5AI score0.00468EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder