CVE-2023-6139
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Jan 8, 2024
Updated: Jan 11, 2024
Summary
CVE-2023-6139 is a vulnerability affecting the Essential Real Estate WordPress plugin before version 4.4.0. This issue permits subscriber-level attackers to launch Denial of Service attacks through the plugin's AJAX actions, which unfortunately, do not undergo sufficient capability checks. This vulnerability could lead to significant disruptions for affected WordPress websites and necessitates an immediate plugin update to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share