CVE-2023-6139

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 8, 2024
Updated: Jan 11, 2024

Summary

CVE-2023-6139 is a vulnerability affecting the Essential Real Estate WordPress plugin before version 4.4.0. This issue permits subscriber-level attackers to launch Denial of Service attacks through the plugin's AJAX actions, which unfortunately, do not undergo sufficient capability checks. This vulnerability could lead to significant disruptions for affected WordPress websites and necessitates an immediate plugin update to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share