CVE-2023-6029
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Jan 15, 2024
Updated: Jan 19, 2024
CWE ID 862
Summary
CVE-2023-6029 is a vulnerability affecting the EazyDocs WordPress plugin before version 2.3.6. This issue allows unauthenticated users to manipulate documents and posts without proper authorization or CSRF checks. As a result, they can delete arbitrary posts and add or delete documents and sections within the plugin. This vulnerability poses a significant security risk as it enables unauthorized actions that can lead to data loss or unintended modifications.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share