5 matches found
WordPress Comments Like Dislike 1.2.0 Missing Authorization
Exploit Title: POC-CVE-2023-3244 Date: 9/12/2023 Exploit Author: Diaa Hanna Software Link: download link if available Version: = 1.2.0 comments-like-dislike Tested on: 1.1.6 comments-like-dislike CVE : CVE-2023-3244 References https://nvd.nist.gov/vuln/detail/CVE-2023-3244 The Comments Like Disli...
comments-like-dislike < 1.2.0 - Authenticated (Subscriber+) Plugin Setting Reset Exploit
Exploit Title: POC-CVE-2023-3244 Exploit Author: Diaa Hanna Software Link: download link if available Version: = 1.2.0 comments-like-dislike Tested on: 1.1.6 comments-like-dislike CVE : CVE-2023-3244 References https://nvd.nist.gov/vuln/detail/CVE-2023-3244 The Comments Like Dislike plugin for...
Exploit for CVE-2023-3244
proof of concept for CVE-2023-3244 Hello, this is a simple Pr...
CVE-2023-3244
creationtimestamp| type| source ---|---|--- 2023-08-17 12:37:15+00:00| seen| https://t.me/cibsecurity/68729 2023-09-14 11:00:52+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9019 2023-09-15 03:37:09+00:00| published-proof-of-concept| https://t.me/crackcodes/4294...
CVE-2023-3244 Comments Like Dislike <= 1.2.0 - Missing Authorization to Authenticated (Subscriber+) Plugin Setting Reset
The Comments Like Dislike plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the restoresettings function called via an AJAX action in versions up to, and including, 1.2.0. This makes it possible for authenticated attackers with minimal...