WordfenceVULNRICHMENT:CVE-2023-6696CVE-2023-6696 Popup Builder – Create highly converting, mobile friendly marketing popups <= 4.3.1 - Missing Authorization and Nonce Exposure
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
6.8 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
25.5%
The Popup Builder – Create highly converting, mobile friendly marketing popups. plugin for WordPress is vulnerable to unauthorized access of functionality due to a missing capability check on several functions in all versions up to, and including, 4.3.1. While some functions contain a nonce check, the nonce can be obtained from the profile page of a logged-in user. This allows subscribers to perform several actions including deleting subscribers and perform blind Server-Side Request Forgery.
CNA Affected
[
{
"vendor": "popupbuilder",
"product": "Popup Builder – Create highly converting, mobile friendly marketing popups.",
"versions": [
{
"version": "*",
"status": "affected",
"lessThanOrEqual": "4.3.1",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Related
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
6.8 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
25.5%