CVE-2023-47780 - How Missing Authorization in EasyAzon Plugin Exposes WordPress Sites
The EasyAzon plugin is a popular tool for WordPress users who want to easily add Amazon affiliate links to their content. But from its earliest
CVE-2023-47764 - Exploiting Missing Authorization and Broken Access Control in Metaphor Creations Ditty (<= 3.1.24)
In late 2023, security researchers discovered a Missing Authorization vulnerability—tracked as CVE-2023-47764—in the popular WordPress plugin, Ditty by Metaphor Creations. This plugin is
CVE-2023-47763 - How a Missing Authorization Vulnerability Lets Attackers Exploit WP Custom Admin Interface (Versions up to 7.31)
The WordPress plugin WP Custom Admin Interface is a popular tool for customizing your WordPress admin dashboard. Used by thousands of sites to personalize how
CVE-2023-47760 - Exploiting Missing Authorization in Essential Blocks for Gutenberg (WordPress Plugin)
A critical vulnerability—CVE-2023-47760—was discovered in the popular WordPress plugin Essential Blocks for Gutenberg. This plugin is used by thousands to add custom blocks
CVE-2023-47698 - How Incorrect Access Controls in Artisan Workshop Japanized For WooCommerce Led to a Serious Authorization Vulnerability
Summary:
A critical security vulnerability, identified as CVE-2023-47698, was found in certain versions of the “Japanized For WooCommerce” plugin for WordPress. This flaw allowed unauthorized
Episode
00:00:00
00:00:00