Lucene search
K

4 matches found

NVD
NVD
added 2025/01/02 12:15 p.m.14 views

CVE-2023-47647

Missing Authorization vulnerability in LearningTimes BadgeOS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BadgeOS: from n/a through 3.7.1.6...

4.3CVSS0.00436EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 12:0 p.m.86 views

CVE-2023-47647

CVE-2023-47647 corresponds to a Missing Authorization (Broken Access Control) vulnerability in LearningTimes BadgeOS, affecting BadgeOS up to version 3.7.1.6. The issue originates from misconfigured access control levels, enabling unauthorized actions. Reported CVSS 3.1 base score 4.3 (Medium). C...

4.3CVSS8AI score0.00436EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 12:0 p.m.20 views

CVE-2023-47647 WordPress BadgeOS plugin <= 3.7.1.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in LearningTimes BadgeOS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BadgeOS: from n/a through 3.7.1.6...

4.3CVSS0.00436EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/11/07 12:0 a.m.10 views

WordPress BadgeOS Plugin <= 3.7.1.6 is vulnerable to Broken Access Control

Software BadgeOS Type Plugin Vulnerable versions = 3.7.1.6 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-47647 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 662abc807ad6 Credits Elliot Required privilege Subscriber...

6.6AI score0.00436EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder