4 matches found
CVE-2023-5559
The 10Web Booster WordPress plugin before 2.24.18 does not validate the option name given to some AJAX actions, allowing unauthenticated users to delete arbitrary options from the database, leading to denial of service...
CVE-2023-5559 10Web Booster < 2.24.18 - Unauthenticated Arbitrary Option Deletion
The 10Web Booster WordPress plugin before 2.24.18 does not validate the option name given to some AJAX actions, allowing unauthenticated users to delete arbitrary options from the database, leading to denial of service...
CVE-2023-5559
The CVE-2023-5559 entry concerns the WordPress plugin 10Web Booster (before version 2.24.18). The vulnerability arises because the plugin does not validate the option name in certain AJAX actions, allowing unauthenticated users to delete arbitrary options from the WordPress database, which leads ...
VulnCheck KEV: CVE-2023-5559
The 10Web Booster WordPress plugin before 2.24.18 does not validate the option name given to some AJAX actions, allowing unauthenticated users to delete arbitrary options from the database, leading to denial of service...