Lucene search
K

5 matches found

Patchstack
Patchstack
added 2023/06/05 12:0 a.m.19 views

WordPress Page Builder with Image Map by AZEXO Plugin <= 1.27.133 is vulnerable to Broken Access Control

Software Page Builder with Image Map by AZEXO Type Plugin Vulnerable versions = 1.27.133 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-3053 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID bcb4f38dcc4d Credits...

5.4CVSS6.5AI score0.00503EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/06/03 12:15 a.m.20 views

CVE-2023-3053

The Page Builder by AZEXO plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'azhaddpost' function in versions up to, and including, 1.27.133. This makes it possible for authenticated attackers to create a post with any post type and...

5.4CVSS5.1AI score0.00503EPSS
Exploits0References3
CVE
CVE
added 2023/06/02 11:37 p.m.53 views

CVE-2023-3053

CVE-2023-3053 affects Page Builder by AZEXO for WordPress. The vulnerability is due to a missing capability check in the azh_add_post function, present up to version 1.27.133. This Broken Access Control allows authenticated attackers to create posts with any post type and post status. The Initial...

5.4CVSS4.6AI score0.00503EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/02 11:37 p.m.8 views

CVE-2023-3053 Page Builder by AZEXO <= 1.27.133 - Missing Authorization to Post Creation

The Page Builder by AZEXO plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'azhaddpost' function in versions up to, and including, 1.27.133. This makes it possible for authenticated attackers to create a post with any post type and...

5.4CVSS6.6AI score0.00503EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/06/02 11:37 p.m.27 views

CVE-2023-3053 Page Builder by AZEXO <= 1.27.133 - Missing Authorization to Post Creation

The Page Builder by AZEXO plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'azhaddpost' function in versions up to, and including, 1.27.133. This makes it possible for authenticated attackers to create a post with any post type and...

5.4CVSS5.4AI score0.00503EPSS
Exploits0References3
Rows per page
Query Builder