6 matches found
CVE-2023-39305
creationtimestamp| type| source ---|---|--- 2024-12-13 19:29:34+00:00| seen| https://infosec.exchange/users/cve/statuses/113647168642054927...
CVE-2023-39305
Missing Authorization vulnerability in Dash Labs Yet Another Stars Rating yet-another-stars-rating allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yet Another Stars Rating: from n/a through = 3.4.3...
CVE-2023-39305 WordPress Yet Another Stars Rating plugin <= 3.4.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Dash Labs Yet Another Stars Rating yet-another-stars-rating allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yet Another Stars Rating: from n/a through = 3.4.3...
CVE-2023-39305
CVE-2023-39305 affects the WordPress plugin Yet Another Stars Rating (YASR) up to version 3.4.3, with a Missing Authorization / Broken Access Control issue occurring via the plugin’s init flow. This allows unauthenticated attackers to perform unauthorized actions (e.g., modifying data) on affecte...
CVE-2023-39305 WordPress Yet Another Stars Rating plugin <= 3.4.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Dash Labs Yet Another Stars Rating yet-another-stars-rating allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yet Another Stars Rating: from n/a through = 3.4.3...
WordPress Yet Another Stars Rating Plugin <= 3.4.3 is vulnerable to Broken Access Control
Software Yet Another Stars Rating Type Plugin Vulnerable versions = 3.4.3 Fixed in 3.4.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-39305 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 2f1e1c0208e9 Credits Revan Arifio Require...