CVSS 3.1 Score 5.4 of 10 (medium)


Published Nov 13, 2023
Updated: Nov 16, 2023
CWE ID 352


CVE-2023-47230 is a Cross-Site Request Forgery (CSRF) vulnerability found in the Cimatti Consulting WordPress Contact Forms by Cimatti plugin, specifically affecting versions <= 1.6.0. This vulnerability has a risk score of 66 and a base severity of MEDIUM. It requires user interaction and has a low integrity impact and no confidentiality impact. The exploitability score is 2.8, indicating a moderate level of difficulty to exploit. The affected products include various versions of the Cimatti Consulting WordPress Contact Forms plugin. To remediate this vulnerability, users should update to the latest version of the plugin, which is not specified in the provided information. If left unpatched, this vulnerability poses potential danger to organizations as it could allow attackers to perform unauthorized actions on behalf of authenticated users, potentially leading to data loss or compromise.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-47230 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options