5.3
CVE-2023-30488 - WordPress Featured Post Creative plugin <= 1.2.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Featured Post Creative allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Featured Post Creative: from n/a through 1.2.7.
4.3
CVE-2023-30748 - WordPress Easy Appointments plugin <= 3.10.7 - Auth. Stored Cross-Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nikola Loncar Easy Appointments allows Stored XSS.This issue affects Easy Appointments: from n/a through 3.10.7.
4.3
CVE-2023-30783 - WordPress Smart WooCommerce Search plugin <= 2.5.0 - Broken Access Control
Missing Authorization vulnerability in YummyWP Smart WooCommerce Search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart WooCommerce Search: from n/a through 2.5.0.
6.5
CVE-2023-30870 - WordPress Sharkdropship for AliExpress Dropship and Affiliate plugin <= 2.2.3 - Multiple Broken Accβ¦
Missing Authorization vulnerability in wooproductimporter Sharkdropship for AliExpress Dropship and Affiliate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sharkdropship for AliExpress Dropship and Affiliate: from n/a through 2.2.3.
5.4
CVE-2023-30873 - WordPress WP Docs plugin <= 1.9.8 - Broken Access Control
Missing Authorization vulnerability in Fahad Mahmood WP Docs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Docs: from n/a through 1.9.8.
4.3
CVE-2023-31073 - WordPress Shortcode to display post and user data plugin <= 1.2.0 - Broken Access Control vulnerabiβ¦
Missing Authorization vulnerability in Jose Vega Display custom fields in the frontend β Post and User Profile Fields allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Display custom fields in the frontend β Post and User Profile Fields: from n/a through 1.2β¦
5.4
CVE-2023-31214 - WordPress WP Quick Post Duplicator plugin <= 2.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Arul Prasad J WP Quick Post Duplicator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Quick Post Duplicator: from n/a through 2.0.
5.4
CVE-2023-32094 - WordPress Extended Post Status plugin <= 1.0.19 - Broken Access Control vulnerability
Missing Authorization vulnerability in Felix Welberg Extended Post Status allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Extended Post Status: from n/a through 1.0.19.
9.8
CVE-2023-32117 - WordPress Integrate Google Drive plugin <= 1.1.99 - Unauthenticated Broken Access Control vulnerabiβ¦
Missing Authorization vulnerability in SoftLab Integrate Google Drive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integrate Google Drive: from n/a through 1.1.99.
4.3
CVE-2023-32126 - WordPress SALERT plugin <= 1.2.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in WPoperation SALERT allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SALERT: from n/a through 1.2.1.