8 matches found
CVE-2023-33923
Missing Authorization vulnerability in HashThemes Viral News, HashThemes Viral, HashThemes HashOne.This issue affects Viral News: from n/a through 1.4.5; Viral: from n/a through 1.8.0; HashOne: from n/a through 1.3.0...
CVE-2023-33923
Missing Authorization vulnerability in HashThemes Viral News, HashThemes Viral, HashThemes HashOne.This issue affects Viral News: from n/a through 1.4.5; Viral: from n/a through 1.8.0; HashOne: from n/a through 1.3.0...
CVE-2023-33923 Broken Access Control leading to Arbitrary Plugin Activation in multiple HashThemes themes
Missing Authorization vulnerability in HashThemes Viral News, HashThemes Viral, HashThemes HashOne.This issue affects Viral News: from n/a through 1.4.5; Viral: from n/a through 1.8.0; HashOne: from n/a through 1.3.0...
CVE-2023-33923
CVE-2023-33923 : Broken Access Control allowing authenticated users to activate arbitrary plugins in multiple HashThemes themes (Viral News, Viral, HashOne). Affected: Viral News up to 1.4.5; Viral up to 1.8.0; HashOne up to 1.3.0. Public records confirm a low- to moderate-severity issue (CVSS 4....
CVE-2023-33923 Broken Access Control leading to Arbitrary Plugin Activation in multiple HashThemes themes
Missing Authorization vulnerability in HashThemes Viral News, HashThemes Viral, HashThemes HashOne.This issue affects Viral News: from n/a through 1.4.5; Viral: from n/a through 1.8.0; HashOne: from n/a through 1.3.0...
WordPress Viral Theme <= 1.8.0 is vulnerable to Broken Access Control
Software Viral Type Theme Vulnerable versions = 1.8.0 Fixed in 1.8.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-33923 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID aa99c7c8ddb8 Credits Dave Jong Patchstack Required privilege...
WordPress Viral News Theme <= 1.4.5 is vulnerable to Broken Access Control
Software Viral News Type Theme Vulnerable versions = 1.4.5 Fixed in 1.4.6 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-33923 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9e1913077f52 Credits Dave Jong Patchstack Required...
WordPress HashOne Theme <= 1.3.0 is vulnerable to Broken Access Control
Software HashOne Type Theme Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-33923 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID db48b6df310a Credits Dave Jong Patchstack Required privileg...