2 matches found
CVE-2023-51482
CVE-2023-51482 is an Improper Authentication vulnerability in WordPress Eazy Plugin Manager (affected: versions n/a through 4.1.2). The flaw allows accessing functionality not properly constrained by ACLs, with references explicitly noting an Arbitrary Options Update leading to Remote Code Execut...
WordPress Eazy Plugin Manager Plugin <= 4.1.2 is vulnerable to Settings Change
Software Eazy Plugin Manager Type Plugin Vulnerable versions = 4.1.2 Fixed in 4.1.3 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2023-51482 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID c77a30c2a9bf Credits Rafie Muhammad Patchstack...