Lucene search
K

1162 matches found

CVE
CVE
added 2025/01/02 11:59 a.m.38 views

CVE-2023-45649

CVE-2023-45649 affects the WordPress Appointment Hour Booking plugin up to version 1.4.23. The root cause is missing authorization / broken access control, enabling unauthenticated users to exploit misconfigured access levels. The CVSSv3.1 base score is 5.3 (Medium) with impact limited to integri...

5.3CVSS5.8AI score0.00358EPSS
Exploits0References1
Prion
Prion
added 2024/12/31 1:15 p.m.12 views

CVE-2023-48775

Missing Authorization vulnerability in Gfazioli WP Cleanfix allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cleanfix: from n/a through 5.6.2...

0.00369EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/31 10:25 a.m.6 views

CVE-2024-56234 WordPress VW Automobile Lite theme <= 2.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in VW THEMES VW Automobile Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Automobile Lite: from n/a through 2.1...

5.4CVSS5.6AI score0.00305EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 3:15 p.m.13 views

CVE-2023-38480

Missing Authorization vulnerability in Certain Dev Booster Elementor Addons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booster Elementor Addons: from n/a through 1.4.9...

5.3CVSS0.00426EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 3:15 p.m.11 views

CVE-2023-38483

Missing Authorization vulnerability in Dylan Blokhuis Instant CSS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Instant CSS: from n/a through 1.1.4...

5.4CVSS0.00426EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 3:15 p.m.6 views

CVE-2023-36518

Missing Authorization vulnerability in Hugh Lashbrooke Post Hit Counter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Hit Counter: from n/a through 1.3.2...

4.3CVSS0.00486EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 3:15 p.m.21 views

CVE-2023-33994

Missing Authorization vulnerability in VeronaLabs Slimstat Analytics wp-slimstat allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Slimstat Analytics: from n/a through = 5.0.5.1...

6.5CVSS0.00477EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:24 p.m.43 views

CVE-2024-54242

CVE-2024-54242 describes a Missing Authorization (Broken Access Control) vulnerability in WordPress Simple Notification plugin versions up to 1.3. The issue arises from incorrectly configured access control, enabling unauthorized actions as described in multiple sources. The CVE affects Simple No...

6.5CVSS7.2AI score0.0034EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:23 p.m.46 views

CVE-2023-36518

CVE-2023-36518 refers to a Broken Access Control issue in WordPress plugin Post Hit Counter (

4.3CVSS8.5AI score0.00486EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:23 p.m.38 views

CVE-2023-32574

CVE-2023-32574 is a missing authorization / broken access control vulnerability in the WordPress plugin Injection Guard (versions

4.3CVSS8.6AI score0.004EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:22 p.m.42 views

CVE-2022-46838

CVE-2022-46838 affects the WordPress plugin JS Help Desk – Best Help Desk & Support Plugin, versions prior to 2.7.1. The issue is a Missing Authorization vulnerability due to an incorrectly configured access control security level, enabling unauthenticated users to perform settings changes. Impac...

9.1CVSS5.2AI score0.00703EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/12/13 2:22 p.m.40 views

CVE-2022-45840

CVE-2022-45840 affects the WordPress plugin Auto Affiliate Links (versions up to and including 6.2.1.5). The issue is a Missing Authorization/Broken Access Control vulnerability that permits unauthenticated users to exploit access-control misconfigurations within the plugin. Impact details in the...

6.5CVSS8AI score0.00637EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 1:15 p.m.19 views

CVE-2023-49858

Missing Authorization vulnerability in Austin Custom Login custom-login allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Custom Login: from n/a through = 4.1.0...

4.3CVSS0.00404EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 1:15 p.m.25 views

CVE-2023-49857

Missing Authorization vulnerability in awesomesupport Awesome Support awesome-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Awesome Support: from n/a through = 6.1.7...

6.5CVSS0.00523EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 1:15 p.m.5 views

CVE-2023-49757

Missing Authorization vulnerability in awesomesupport Awesome Support awesome-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Awesome Support: from n/a through = 6.1.10...

5.4CVSS0.00462EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 1:15 p.m.14 views

CVE-2023-48287

Missing Authorization vulnerability in Matat Technologies TextMe SMS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TextMe SMS: from n/a through 1.9.0...

5.4CVSS0.00457EPSS
Exploits2References1
NVD
NVD
added 2024/12/09 1:15 p.m.20 views

CVE-2023-29237

Missing Authorization vulnerability in Muhammad Rehman Remove Duplicate Posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Remove Duplicate Posts: from n/a through 1.3.5...

6.3CVSS0.00319EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 1:15 p.m.18 views

CVE-2023-25469

Missing Authorization vulnerability in Magazine3 Easy Table of Contents allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Table of Contents: from n/a through 2.0.45.2...

5.4CVSS0.00549EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 1:15 p.m.8 views

CVE-2023-23893

Missing Authorization vulnerability in Igor Benic Simple Giveaways allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple Giveaways: from n/a through 2.48.0...

5.3CVSS0.00469EPSS
Exploits0References1
NVD
NVD
added 2024/12/09 1:15 p.m.16 views

CVE-2023-23823

Missing Authorization vulnerability in Clever Widgets Enhanced Text Widget allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Enhanced Text Widget: from n/a through 1.5.8...

4.3CVSS0.00482EPSS
Exploits0References1
Rows per page
Query Builder