Lucene search
K

4 matches found

NVD
NVD
added 2023/11/22 4:15 p.m.9 views

CVE-2023-5416

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fnsfdeletecategory function in versions up to, and including, 3.4. This makes it possible for authenticated attackers, with subscriber-level permissions and above,...

4.3CVSS0.00403EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/11/22 3:33 p.m.12 views

CVE-2023-5416 Funnelforms Free <= 3.4 - Missing Authorization to Category Deletion

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fnsfdeletecategory function in versions up to, and including, 3.4. This makes it possible for authenticated attackers, with subscriber-level permissions and above,...

4.3CVSS6.6AI score0.00403EPSS
Exploits0References2
CVE
CVE
added 2023/11/22 3:33 p.m.102 views

CVE-2023-5416

CVE-2023-5416 affects Funnelforms Free for WordPress. The vulnerability is a missing capability check in fnsf_delete_category, allowing authenticated users with subscriber-level permissions and above to delete categories. Affected versions are up to and including 3.4. Connected sources indicate p...

4.3CVSS4.6AI score0.00403EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/11/22 3:33 p.m.21 views

CVE-2023-5416 Funnelforms Free <= 3.4 - Missing Authorization to Category Deletion

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fnsfdeletecategory function in versions up to, and including, 3.4. This makes it possible for authenticated attackers, with subscriber-level permissions and above,...

4.3CVSS4.6AI score0.00403EPSS
Exploits0References2
Rows per page
Query Builder