Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:30 a.m.9 views

CVE-2023-5098

The Campaign Monitor Forms by Optin Cat WordPress plugin before 2.5.6 does not prevent users with low privileges like subscribers from overwriting any options on a site with the string "true", which could lead to a variety of outcomes, including DoS...

8.1CVSS6.6AI score0.0058EPSS
Exploits2References1
NVD
NVD
added 2023/10/31 2:15 p.m.18 views

CVE-2023-5098

The Campaign Monitor Forms by Optin Cat WordPress plugin before 2.5.6 does not prevent users with low privileges like subscribers from overwriting any options on a site with the string "true", which could lead to a variety of outcomes, including DoS...

8.1CVSS8AI score0.0058EPSS
Exploits2References1
CVE
CVE
added 2023/10/31 1:54 p.m.52 views

CVE-2023-5098

CVE-2023-5098: Campaign Monitor Forms by Optin Cat for WordPress (pre-2.5.6) allows a Subscriber+ level attacker to overwrite arbitrary WordPress options by calling an AJAX action (fca_eoi_dismiss) with the value true, enabling a denial-of-service style attack. Root cause is broken access control...

8.1CVSS8AI score0.0058EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2023/10/31 1:54 p.m.27 views

CVE-2023-5098 Campaign Monitor Forms < 2.5.6 - Subscriber+ Arbitrary Options Update

The Campaign Monitor Forms by Optin Cat WordPress plugin before 2.5.6 does not prevent users with low privileges like subscribers from overwriting any options on a site with the string "true", which could lead to a variety of outcomes, including DoS...

8.2AI score0.0058EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/10/11 12:0 a.m.14 views

WordPress Campaign Monitor Forms Plugin < 2.5.6 is vulnerable to Broken Access Control

Software Campaign Monitor Forms Type Plugin Vulnerable versions 2.5.6 Fixed in 2.5.6 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-5098 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 224fc6fd923e Credits Francesco Marano...

8.1CVSS6.4AI score0.0058EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder