Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:56 a.m.11 views

CVE-2023-0820

The User Role by BestWebSoft WordPress plugin before 1.6.7 does not protect against CSRF in requests to update role capabilities, leading to arbitrary privilege escalation of any role...

8.8CVSS8.5AI score0.00411EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/04/04 12:0 a.m.10 views

WordPress Add User Role Plugin < 1.6.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Add User Role Type Plugin Vulnerable versions 1.6.7 Fixed in 1.6.7 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-0820 Patch priority Low CVSS severity Low 8.8 Developer Claim ownership PSID 7eb1f185c259 Credits dc11 Required privilege...

8.8CVSS7AI score0.00411EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2023/04/03 2:38 p.m.63 views

CVE-2023-0820

CVE-2023-0820 affects the WordPress plugin “User Role by BestWebSoft – Add and Customize Roles and Capabilities in WordPress” up to version 1.6.7. The issue is a CSRF vulnerability in requests that update role capabilities, allowing arbitrary privilege escalation for any user role. The impact is ...

8.8CVSS8.9AI score0.00411EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/03 2:38 p.m.9 views

CVE-2023-0820 User Role by BestWebSoft < 1.6.7 - Privilege Escalation via CSRF

The User Role by BestWebSoft WordPress plugin before 1.6.7 does not protect against CSRF in requests to update role capabilities, leading to arbitrary privilege escalation of any role...

8.9AI score0.00411EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/04/03 2:38 p.m.33 views

CVE-2023-0820 User Role by BestWebSoft < 1.6.7 - Privilege Escalation via CSRF

The User Role by BestWebSoft WordPress plugin before 1.6.7 does not protect against CSRF in requests to update role capabilities, leading to arbitrary privilege escalation of any role...

9.1AI score0.00411EPSS
Exploits2References1
Rows per page
Query Builder