CVE-2023-33995

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Dec 13, 2024
CWE ID 862

Summary

CVE-2023-33995 is a vulnerability affecting the Photo Gallery Team Photo Gallery plugin by 10Web. This issue involves missing authorization, which allows unauthorized users to exploit incorrectly configured access control security levels. As a result, attackers can gain unauthorized access to the Photo Gallery feature, posing a significant risk to websites using the affected plugin versions from n/a through 1.8.15.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share