4 matches found
CVE-2023-23639
Missing Authorization vulnerability in MainWP MainWP Staging Extension.This issue affects MainWP Staging Extension: from n/a through 4.0.3...
CVE-2023-23639 WordPress MainWP Staging Extension Plugin <= 4.0.3 - Subscriber+ Arbitrary Plugin Activation Vulnerability
Missing Authorization vulnerability in MainWP MainWP Staging Extension.This issue affects MainWP Staging Extension: from n/a through 4.0.3...
CVE-2023-23639
The CVE-2023-23639 entry concerns the WordPress MainWP Staging Extension plugin, affected through version 4.0.3. The root cause is a Missing Authorization vulnerability in the plugin (Broken Access Control), enabling a Subscriber to perform an arbitrary plugin activation action. Public sources (P...
WordPress MainWP Staging Extension Plugin <= 4.0.3 is vulnerable to Broken Access Control
Software MainWP Staging Extension Type Plugin Vulnerable versions = 4.0.3 Fixed in 4.0.4 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-23639 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID bd391a4b93d5 Credits Dave Jong...