3 matches found
WordPress ContentStudio Plugin < 1.2.6 is vulnerable to Bypass Vulnerability
Software ContentStudio Type Plugin Vulnerable versions 1.2.6 Fixed in 1.2.6 OWASP Top 10 A5: Broken Access Control Classification Bypass Vulnerability CVE CVE-2023-0558 Patch priority Low CVSS severity Low 7.3 Developer Claim ownership PSID 9617386e7fb6 Credits Chloe Chamberland Required privileg...
CVE-2023-0558
The ContentStudio WordPress plugin is vulnerable to an authorization bypass caused by an insecure token check that is susceptible to type juggling in versions up to and including 1.2.5. This permits unauthenticated attackers to execute functions intended for users with valid API keys. Fixes noted...
CVE-2023-0558 ContentStudio <= 1.2.5 - Authorization Bypass
The ContentStudio plugin for WordPress is vulnerable to authorization bypass due to an unsecure token check that is susceptible to type juggling in versions up to, and including, 1.2.5. This makes it possible for unauthenticated attackers to execute functions intended for use by users with proper...