CVSS Score of 10 (low)


Published Jul 11, 2023
Updated: Jul 18, 2023
CWE ID 352


CVE-2023-35780 is a Cross-Site Request Forgery (CSRF) vulnerability found in the Andy Whalen Galleria plugin versions <= 1.0.3. This vulnerability affects the products sCvixk, sCvixj, and sCvixi. The risk score for this vulnerability is 27 out of 100. The vulnerability has a base severity rating of "MEDIUM" and has been assessed as having an exploitability score of 2.8 out of 10. To exploit this vulnerability, an attacker would require user interaction, making it more difficult to execute. The potential danger it poses to an organization includes low integrity impact and no confidentiality impact, but possible high integrity impact according to different sources. No remediation steps or further analysis descriptions are provided for this vulnerability at this time.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-35780 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options