Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:31 a.m.8 views

CVE-2023-5352

The Awesome Support WordPress plugin before 6.1.5 does not correctly authorize the wpaseditreply function, allowing users to edit posts for which they do not have permission...

4.3CVSS6.7AI score0.00405EPSS
Exploits2
Patchstack
Patchstack
added 2023/11/07 12:0 a.m.19 views

WordPress Awesome Support Plugin < 6.1.5 is vulnerable to Broken Access Control

Software Awesome Support Type Plugin Vulnerable versions 6.1.5 Fixed in 6.1.5 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-5352 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 07a73880431c Credits Krzysztof Zając CERT PL Required...

4.3CVSS6.9AI score0.00405EPSS
Exploits2References4Affected Software1
CVE
CVE
added 2023/11/06 8:40 p.m.76 views

CVE-2023-5352

The CVE-2023-5352 entry relates to the WordPress plugin Awesome Support prior to version 6.1.5, where an insufficient authorization check in the wpas_edit_reply function allows a user to edit posts for which they lack permission. Affected versions are prior to 6.1.5; the issue is documented with ...

4.3CVSS4.5AI score0.00405EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/06 8:40 p.m.7 views

CVE-2023-5352 Awesome Support < 6.1.5 - Insufficient permission check in wpas_edit_reply

The Awesome Support WordPress plugin before 6.1.5 does not correctly authorize the wpaseditreply function, allowing users to edit posts for which they do not have permission...

4.6AI score0.00405EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/11/06 8:40 p.m.34 views

CVE-2023-5352 Awesome Support < 6.1.5 - Insufficient permission check in wpas_edit_reply

The Awesome Support WordPress plugin before 6.1.5 does not correctly authorize the wpaseditreply function, allowing users to edit posts for which they do not have permission...

5AI score0.00405EPSS
Exploits2References1
Rows per page
Query Builder