3 matches found
CVE-2023-22699
Missing Authorization vulnerability in MainWP MainWP Wordfence Extension.This issue affects MainWP Wordfence Extension: from n/a through 4.0.7...
CVE-2023-22699
CVE-2023-22699 affects the WordPress MainWP Wordfence Extension (plugin) with a Missing Authorization vulnerability up to version 4.0.7, classified as Broken Access Control. Substantial evidence in Patchstack and related records shows the vulnerability enables subscriber-level access to activate ...
WordPress MainWP Wordfence Extension Plugin <= 4.0.7 is vulnerable to Broken Access Control
Software MainWP Wordfence Extension Type Plugin Vulnerable versions = 4.0.7 Fixed in 4.0.8 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-22699 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID aa51573e0a8b Credits Dave Jong...