Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:31 a.m.21 views

CVE-2023-5417

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fnsfupdatecategory function in versions up to, and including, 3.4. This makes it possible for authenticated attackers, with subscriber-level permissions and above,...

4.3CVSS6.4AI score0.00395EPSS
Exploits0References1
Circl
Circl
added 2023/12/20 1:48 p.m.4 views

CVE-2023-5417

creationtimestamp| type| source ---|---|--- 2023-12-20 13:48:36+00:00| seen| https://t.me/ctinow/156960...

4.3CVSS6.2AI score0.00395EPSS
Exploits0References1
CVE
CVE
added 2023/11/22 3:33 p.m.85 views

CVE-2023-5417

The CVE-2023-5417 entry concerns Funnelforms Free for WordPress. A missing capability check in the fnsf_update_category function affects versions up to and including 3.4, allowing authenticated attackers with subscriber-level permissions and above to modify the Funnelforms category for a given po...

4.3CVSS4.6AI score0.00395EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/11/22 3:33 p.m.24 views

CVE-2023-5417 Funnelforms Free <= 3.4 - Missing Authorization to Category Update

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fnsfupdatecategory function in versions up to, and including, 3.4. This makes it possible for authenticated attackers, with subscriber-level permissions and above,...

4.3CVSS4.6AI score0.00395EPSS
Exploits0References2
Rows per page
Query Builder