Lucene search
K

4 matches found

redhatcve
redhatcve
added 2026/01/09 9:26 a.m.7 views

CVE-2023-4796

The Booster for WooCommerce for WordPress is vulnerable to Information Disclosure via the 'wcjwpoption' shortcode in versions up to, and including, 7.1.0 due to insufficient controls on the information retrievable via the shortcode. This makes it possible for authenticated attackers, with...

4.3CVSS6.1AI score0.00585EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2023/10/20 7:29 a.m.11 views

CVE-2023-4796 Booster for WooCommerce <= 7.1.0 - Authenticated (Subscriber+) Information Disclosure via Shortcode

The Booster for WooCommerce for WordPress is vulnerable to Information Disclosure via the 'wcjwpoption' shortcode in versions up to, and including, 7.1.0 due to insufficient controls on the information retrievable via the shortcode. This makes it possible for authenticated attackers, with...

4.3CVSS6.6AI score0.00585EPSS
Exploits1References3
cve
cve
added 2023/10/20 7:29 a.m.53 views

CVE-2023-4796

CVE-2023-4796 affects the Booster for WooCommerce plugin for WordPress (versions up to 7.1.0). It is an information-disclosure vulnerability via the wcj_wp_option shortcode, allowing authenticated users with subscriber-level capabilities or higher to retrieve arbitrary sensitive site options. The...

4.3CVSS4.6AI score0.00585EPSS
Exploits1References3Affected Software1
patchstack
patchstack
added 2023/09/14 12:0 a.m.8 views

WordPress Booster for WooCommerce Plugin <= 7.1.0 is vulnerable to Sensitive Data Exposure

Software Booster for WooCommerce Type Plugin Vulnerable versions = 7.1.0 Fixed in 7.1.1 OWASP Top 10 A5: Security Misconfiguration Classification Sensitive Data Exposure CVE CVE-2023-4796 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d3120f1c06fe Credits Lana Codes...

4.3CVSS6.9AI score0.00585EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder