4 matches found
CVE-2023-2561
The Gallery Metabox for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the galleryremove function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to modify galleries attached to posts and pages with th...
CVE-2023-2561
The Gallery Metabox for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the galleryremove function in versions up to, and including, 1.5. This makes it possible for subscriber-level attackers to modify galleries attached to posts and pages with th...
CVE-2023-2561
CVE-2023-2561 affects the WordPress plugin Gallery Metabox (versions
WordPress Gallery Metabox Plugin <= 1.5 is vulnerable to Broken Access Control
Software Gallery Metabox Type Plugin Vulnerable versions = 1.5 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-2561 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 640496049b74 Credits Marco Wotschka Required...