15 matches found
CVE-2023-48760
Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...
CVE-2023-48760 WordPress JetElements For Elementor plugin <= 2.6.13 - Unauthenticated Broken Access Control vulnerability
Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...
CVE-2023-48760 WordPress JetElements For Elementor plugin <= 2.6.13 - Unauthenticated Broken Access Control vulnerability
Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...
CVE-2023-48760
CVE-2023-48760 is a Missing Authorization / Broken Access Control issue affecting Crocoblock JetElements and related Elementor Jet plugins. Connected Patchstack entries confirm unauthenticated access issues for multiple Crocoblock plugins, including: JetElements: vulnerable <= 2.6.13; fixed in...
WordPress JetBlocks For Elementor Plugin <= 1.3.8 is vulnerable to Broken Access Control
Software JetBlocks For Elementor Type Plugin Vulnerable versions = 1.3.8 Fixed in 1.3.8.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 51b603280bfd Credits Rafie Muhammad...
WordPress JetReviews Plugin <= 2.3.2 is vulnerable to Broken Access Control
Software JetReviews Type Plugin Vulnerable versions = 2.3.2 Fixed in 2.3.2.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 92a291e17f08 Credits Rafie Muhammad Patchstack...
WordPress JetCompareWishlist Plugin <= 1.5.5.1 is vulnerable to Broken Access Control
Software JetCompareWishlist Type Plugin Vulnerable versions = 1.5.5.1 Fixed in 1.5.5.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID c645a5e87be7 Credits Rafie Muhammad...
WordPress JetProductGallery Plugin <= 2.1.13.1 is vulnerable to Broken Access Control
Software JetProductGallery Type Plugin Vulnerable versions = 2.1.13.1 Fixed in 2.1.13.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 7e68b6745d20 Credits Rafie Muhammad...
WordPress JetWooBuilder Plugin <= 2.1.7.2 is vulnerable to Broken Access Control
Software JetWooBuilder Type Plugin Vulnerable versions = 2.1.7.2 Fixed in 2.1.7.3 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 8b8b6528e3fb Credits Rafie Muhammad Patchstack...
VulnCheck KEV: CVE-2023-48760
Multiple plugins by Crocoblock for WordPress are vulnerable to an authorization bypass vulnerability...
WordPress JetMenu Plugin <= 2.4.1 is vulnerable to Broken Access Control
Software JetMenu Type Plugin Vulnerable versions = 2.4.1 Fixed in 2.4.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID d2123458ae3d Credits Rafie Muhammad Patchstack Required...
WordPress JetElements For Elementor Plugin <= 2.6.13 is vulnerable to Broken Access Control
Software JetElements For Elementor Type Plugin Vulnerable versions = 2.6.13 Fixed in 2.6.13.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID e51e2e2e22ba Credits Rafie Muhammad...
WordPress JetThemeCore Plugin <= 2.1.2.1 is vulnerable to Broken Access Control
Software JetThemeCore Type Plugin Vulnerable versions = 2.1.2.1 Fixed in 2.1.2.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 0220d8533139 Credits Rafie Muhammad Patchstack...
WordPress JetTricks Plugin <= 1.4.6.1 is vulnerable to Broken Access Control
Software JetTricks Type Plugin Vulnerable versions = 1.4.6.1 Fixed in 1.4.6.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 1a049ca5510e Credits Rafie Muhammad Patchstack...
WordPress JetBlog Plugin <= 2.3.5 is vulnerable to Broken Access Control
Software JetBlog Type Plugin Vulnerable versions = 2.3.5 Fixed in 2.3.5.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 41e8fbc9018f Credits Rafie Muhammad Patchstack Required...