Lucene search
+L

4 matches found

NVD
NVD
added 2024/06/14 12:15 a.m.22 views

CVE-2023-35040

Missing Authorization vulnerability in SendPress SendPress Newsletters.This issue affects SendPress Newsletters: from n/a through 1.23.11.6...

9.8CVSS0.00347EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 11:51 p.m.62 views

CVE-2023-35040

CVE-2023-35040 affects WordPress plugin SendPress Newsletters (versions up to and including 1.23.11.6). The issue is described as a Missing Authorization / Broken Access Control vulnerability in SendPress Newsletters, with unauthenticated access potentially allowed due to insufficient authorizati...

9.8CVSS8.6AI score0.00347EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/06/13 11:51 p.m.6 views

CVE-2023-35040 WordPress SendPress Newsletters plugin <= 1.23.11.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in SendPress SendPress Newsletters.This issue affects SendPress Newsletters: from n/a through 1.23.11.6...

5.3CVSS7.2AI score0.00347EPSS
Exploits0References4
Patchstack
Patchstack
added 2023/08/11 12:0 a.m.9 views

WordPress SendPress Newsletters Plugin <= 1.23.11.6 is vulnerable to Broken Access Control

Software SendPress Newsletters Type Plugin Vulnerable versions = 1.23.11.6 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-35040 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 2fdf034a00ac Credits Mika Required privile...

9.8CVSS6.6AI score0.00347EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder