6 matches found
CVE-2023-45828
creationtimestamp| type| source ---|---|--- 2025-01-02 12:16:12+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2kfgxvq2o 2025-01-02 13:08:05+00:00| seen| https://infosec.exchange/users/cve/statuses/113758914774454801...
CVE-2023-45828
Missing Authorization vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.2.5...
CVE-2023-45828 WordPress RumbleTalk Live Group Chat plugin <= 6.2.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.2.5...
CVE-2023-45828
CVE-2023-45828 affects the WordPress RumbleTalk Live Group Chat plugin (versions up to and including 6.2.5). The issue is a Missing/Incorrectly Configured Authorization vulnerability (Broken Access Control) in the plugin’s handling of AJAX/authorization checks (handleRequest and related flows), a...
CVE-2023-45828 WordPress RumbleTalk Live Group Chat plugin <= 6.2.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.2.5...
WordPress RumbleTalk Live Group Chat Plugin <= 6.2.5 is vulnerable to Broken Access Control
Software RumbleTalk Live Group Chat Type Plugin Vulnerable versions = 6.2.5 Fixed in 6.2.6 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-45828 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID 142311804af3 Credits Mika Require...