CVE-2023-44232

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 9, 2023
Updated: Oct 11, 2023
CWE ID 352

Summary

CVE-2023-44232 identifies a Cross-Site Request Forgery (CSRF) weakness in the WP Hide Pages plugin versions 1.0 and below by Huseyin Berberoglu. This vulnerability allows an unauthenticated attacker to execute malicious actions on a user's WordPress site, such as modifying or deleting pages, by tricking the user into opening a specially crafted link. The impact of this issue can result in unintended modifications to a site's page structure, leading to potential security concerns and site functionality disruptions. Users are advised to upgrade to the latest version of WP Hide Pages to mitigate the risk of CVE-2023-44232.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share