4 matches found
CVE-2023-6741
The WP Customer Area WordPress plugin before 8.2.1 does not properly validate users capabilities in some of its AJAX actions, allowing malicious users to edit other users' account address...
CVE-2023-6741
The WP Customer Area WordPress plugin before 8.2.1 does not properly validate users capabilities in some of its AJAX actions, allowing malicious users to edit other users' account address...
CVE-2023-6741
The CVE-2023-6741 entry concerns the WordPress plugin WP Customer Area prior to version 8.2.1. Affected component: plugin AJAX actions where user capabilities are not properly validated, enabling malicious users to edit other users’ account addresses. Public details in connected sources include a...
CVE-2023-6741 WP Customer Area < 8.2.1 - Subscriber+ Account Address Update
The WP Customer Area WordPress plugin before 8.2.1 does not properly validate users capabilities in some of its AJAX actions, allowing malicious users to edit other users' account address...