6 matches found
CVE-2023-47180
Missing Authorization vulnerability in XLPlugins Finale Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Finale Lite: from n/a through 2.16.0...
CVE-2023-47180
creationtimestamp| type| source ---|---|--- 2025-01-02 12:17:29+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2mozqli2c 2025-01-02 14:53:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113759328157381620...
CVE-2023-47180
Missing Authorization vulnerability in XLPlugins Finale Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Finale Lite: from n/a through 2.16.0...
CVE-2023-47180
CVE-2023-47180 affects the WordPress plugin Finale Lite (XLPlugins Finale Lite) with Missing Authorization, allowing unauthenticated users to delete content due to incorrectly configured access control. Public sources in the Connected Documents confirm the vulnerable range as Finale Lite versions...
CVE-2023-47180 WordPress Finale Lite – Sales Countdown Timer & Discount for WooCommerce plugin <= 2.16.0 - Arbitrary Content Deletion vulnerability
Missing Authorization vulnerability in XLPlugins Finale Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Finale Lite: from n/a through 2.16.0...
WordPress Finale Lite Plugin <= 2.16.0 is vulnerable to Arbitrary Content Deletion
Software Finale Lite Type Plugin Vulnerable versions = 2.16.0 Fixed in 2.17.0 OWASP Top 10 A5: Broken Access Control Classification Arbitrary Content Deletion CVE CVE-2023-47180 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID a89d6e226519 Credits Mika Required...