WordPress GMAce Plugin <= 1.5.2 is vulnerable to Arbitrary File Download

Software GMAce Type Plugin Vulnerable versions = 1.5.2 Fixed in N/A OWASP Top 10 A6: Security Misconfiguration Classification Arbitrary File Download CVE CVE-2023-23872 Patch priority Low CVSS severity Low 4.9 Developer Claim ownership PSID 4ffc557c3ed7 Credits Mika Required privilege Administrat...

WordPress GMAce Plugin <= 1.5.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software GMAce Type Plugin Vulnerable versions = 1.5.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-23861 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 5e49c5295a88 Credits Mika Required privilege...