Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:1F62BC00-1315-4EDA-8517-3E3AD7E1C5E1
HistoryMay 23, 2023 - 12:00 a.m.

ReviewX < 1.6.14 - Subscriber+ Privilege Escalation

2023-05-2300:00:00
wpscan.com
7
reviewx
privilege escalation
plugin
unauthorized users
administrators

0.001 Low

EPSS

Percentile

42.0%

JSON

The plugin does not validate parameters passed to the rx_set_screen_options function, allowing any authenticated users, such as subscriber to set themselves as administrators

CPENameOperatorVersion
reviewxlt1.6.14

Related

packetstorm 1
cve 1
githubexploit 1
prion 1
cvelist 1
nvd 1
wordfence 3
zdt 1
packetstorm
packetstorm
WordPress ReviewX 1.6.13 Privilege Escalation
2023-05-31 00:00:00
cve
cve
CVE-2023-2833
2023-06-06 10:15:09
githubexploit
githubexploit
Exploit for Improper Privilege Management in Wpdeveloper Reviewx
2023-06-19 22:10:09
prion
prion
Authorization
2023-06-06 10:15:00
cvelist
cvelist
CVE-2023-2833
2023-06-06 09:33:23
nvd
nvd
CVE-2023-2833
2023-06-06 10:15:09
wordfence
wordfence
WPDeveloper Addresses Privilege Escalation Vulnerability in ReviewX WordPress Plugin
2023-05-31 12:27:51
2023’s Critical WordPress Vulnerabilities and How They Work
2024-02-12 19:11:21
Wordfence Intelligence Weekly WordPress Vulnerability Report (May 29, 2023 to June 4, 2023)
2023-06-08 13:39:51
zdt
zdt
WordPress ReviewX 1.6.13 Privilege Escalation Vulnerability
2023-05-31 00:00:00

0.001 Low

EPSS

Percentile

42.0%

JSON
Related for WPVDB-ID:1F62BC00-1315-4EDA-8517-3E3AD7E1C5E1
packetstorm1cve1githubexploit1prion1cvelist1nvd1wordfence3zdt1