Untriaged
Permalink
CVE-2023-23672
5.4 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): LOW
- Availability impact (A): LOW
WordPress GiveWP plugin <= 2.25.1 - Arbitrary Content Deletion vulnerability
Missing Authorization vulnerability in Liquid Web / StellarWP GiveWP.This issue affects GiveWP: from n/a through 2.25.1.
References
Affected products
give
- =<2.25.1
Matching in nixpkgs
pkgs.filegive
Easy p2p file sending program
-
nixos-unstable -
- nixpkgs-unstable 2022-05-29