CVE-2023-28532

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Dec 9, 2024
CWE ID 862

Summary

CVE-2023-28532 is a security vulnerability affecting the Real Estate Directory component of wpdirectorykit.com. The flaw involves missing authorization checks, which enable unauthorized access to certain functionalities. Hackers can exploit this issue by manipulating incorrectly configured access control security levels. This vulnerability affects Real Estate Directory versions from n/a through 1.0.5. Successful exploitation could potentially lead to unauthorized data access or modification. Users are advised to update their Real Estate Directory component to the latest version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share