3 matches found
CVE-2023-51672
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit Checkout: from n/a through 3.10.3...
CVE-2023-51672
CVE-2023-51672 affects FunnelKit Checkout (WordPress plugin). The issue is Unauthenticated Arbitrary Content Deletion (arbitrary post/page deletion) due to missing authorization, affecting FunnelKit Checkout versions up to and including 3.10.3. The CVSS 3.1 base score is 7.5 (HIGH) with network a...
WordPress FunnelKit Checkout Plugin <= 3.10.3 is vulnerable to Arbitrary Content Deletion
Software FunnelKit Checkout Type Plugin Vulnerable versions = 3.10.3 Fixed in 3.11.0 OWASP Top 10 A1: Broken Access Control Classification Arbitrary Content Deletion CVE CVE-2023-51672 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 02d122ae661d Credits Dave Jong...