CVE-2023-47827
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Nov 30, 2023
Updated: Dec 5, 2023
CWE ID 863
Summary
CVE-2023-47827 is an Incorrect Authorization vulnerability affecting the Events Addon for Elementor, from version n/a through 2.1.3. Hackers can exploit this issue to access functionality not properly constrained by Access Control Lists (ACLs), potentially gaining unauthorized access to sensitive information or features. This poses a significant risk to websites using the Events Addon for Elementor and highlights the importance of keeping plugins up-to-date with the latest security patches.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share