CVE-2023-48324
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Published Dec 9, 2024
CWE ID 862
Summary
CVE-2023-48324 is a critical vulnerability affecting Awesome Support, a popular WordPress plugin. The issue stems from a missing authorization mechanism, enabling unauthorized access to certain functionalities. Malicious actors can exploit this vulnerability when access control security levels are incorrectly configured, potentially leading to data theft or unintended modifications. This issue poses a significant risk for sites running Awesome Support versions 1 through 6.1.4, necessitating immediate attention and patch application.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share