CVE-2023-4627
CVE-2023-4627 (LadiApp WordPress plugin) is tied to a missing capability check in save_config() on versions up to 4.4, allowing authenticated attackers with subscriber-level access and above to modify the ladipage_config option. Red Hat’s advisory confirms the vulnerability and lists the affected...