Lucene search
+L

6 matches found

Circl
Circl
added 2024/12/13 7:29 p.m.10 views

CVE-2023-39305

creationtimestamp| type| source ---|---|--- 2024-12-13 19:29:34+00:00| seen| https://infosec.exchange/users/cve/statuses/113647168642054927...

5.3CVSS6.9AI score0.00431EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 3:15 p.m.9 views

CVE-2023-39305

Missing Authorization vulnerability in Dash Labs Yet Another Stars Rating yet-another-stars-rating allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yet Another Stars Rating: from n/a through = 3.4.3...

5.3CVSS0.00431EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/13 2:23 p.m.15 views

CVE-2023-39305 WordPress Yet Another Stars Rating plugin <= 3.4.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Dash Labs Yet Another Stars Rating yet-another-stars-rating allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yet Another Stars Rating: from n/a through = 3.4.3...

5.3CVSS7.3AI score0.00431EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:23 p.m.83 views

CVE-2023-39305

CVE-2023-39305 affects the WordPress plugin Yet Another Stars Rating (YASR) up to version 3.4.3, with a Missing Authorization / Broken Access Control issue occurring via the plugin’s init flow. This allows unauthenticated attackers to perform unauthorized actions (e.g., modifying data) on affecte...

5.3CVSS7.3AI score0.00431EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/13 2:23 p.m.17 views

CVE-2023-39305 WordPress Yet Another Stars Rating plugin <= 3.4.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Dash Labs Yet Another Stars Rating yet-another-stars-rating allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yet Another Stars Rating: from n/a through = 3.4.3...

5.3CVSS0.00431EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/11/27 12:0 a.m.12 views

WordPress Yet Another Stars Rating Plugin <= 3.4.3 is vulnerable to Broken Access Control

Software Yet Another Stars Rating Type Plugin Vulnerable versions = 3.4.3 Fixed in 3.4.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-39305 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 2f1e1c0208e9 Credits Revan Arifio Require...

6.9AI score0.00431EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder