CVE-2023-48324

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Dec 9, 2024
CWE ID 862

Summary

CVE-2023-48324 is a critical vulnerability affecting Awesome Support, a popular WordPress plugin. The issue stems from a missing authorization mechanism, enabling unauthorized access to certain functionalities. Malicious actors can exploit this vulnerability when access control security levels are incorrectly configured, potentially leading to data theft or unintended modifications. This issue poses a significant risk for sites running Awesome Support versions 1 through 6.1.4, necessitating immediate attention and patch application.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share