4 matches found
CVE-2023-6491
The Strong Testimonials plugin for WordPress is vulnerable to unauthorized modification of data due to an improper capability check on the wpmtstsaveviewsticky function in all versions up to, and including, 3.1.12. This makes it possible for authenticated attackers, with contributor access and...
CVE-2023-6491
The Strong Testimonials plugin for WordPress is vulnerable to unauthorized modification of data due to an improper capability check on the wpmtstsaveviewsticky function in all versions up to, and including, 3.1.12. This makes it possible for authenticated attackers, with contributor access and...
CVE-2023-6491 Strong Testimonials <= 3.1.12 - Authenticated(Contributor+) Improper Authorization to Views Modification
The Strong Testimonials plugin for WordPress is vulnerable to unauthorized modification of data due to an improper capability check on the wpmtstsaveviewsticky function in all versions up to, and including, 3.1.12. This makes it possible for authenticated attackers, with contributor access and...
WordPress Strong Testimonials Plugin <= 3.1.12 is vulnerable to Broken Access Control
Software Strong Testimonials Type Plugin Vulnerable versions = 3.1.12 Fixed in 3.1.13 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-6491 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 107d32b5539a Credits Rafshanzani Suhada...