3 matches found
CVE-2023-6824
The WP Customer Area WordPress plugin before 8.2.1 does not properly validates user capabilities in some of its AJAX actions, allowing any users to retrieve other user's account address...
CVE-2023-6824
The WP Customer Area WordPress plugin before 8.2.1 does not properly validates user capabilities in some of its AJAX actions, allowing any users to retrieve other user's account address...
CVE-2023-6824
CVE-2023-6824 affects the WordPress plugin WP Customer Area prior to version 8.2.1. The issue is that the plugin does not properly validate user capabilities in some AJAX actions , allowing any user to retrieve another user’s account address. The CVE is consistently described across sources as a ...