Missing Authorization vulnerability in Nate Reist Protected Posts Logout Button allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Protected Posts Logout Button: from n/a through 1.4.5.
History

Mon, 09 Dec 2024 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Wordpress
Wordpress nate Reist Protected Posts Logout Button
CPEs cpe:2.3:a:wordpress:nate_reist_protected_posts_logout_button:*:*:*:*:*:*:*:*
Vendors & Products Wordpress
Wordpress nate Reist Protected Posts Logout Button
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 09 Dec 2024 11:45:00 +0000

Type Values Removed Values Added
Description Missing Authorization vulnerability in Nate Reist Protected Posts Logout Button allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Protected Posts Logout Button: from n/a through 1.4.5.
Title WordPress Protected Posts Logout Button plugin <= 1.4.5 - Broken Access Control vulnerability
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2024-12-09T11:31:34.297Z

Updated: 2024-12-09T15:23:41.636Z

Reserved: 2023-02-06T12:38:05.559Z

Link: CVE-2023-25454

cve-icon Vulnrichment

Updated: 2024-12-09T15:23:36.268Z

cve-icon NVD

Status : Received

Published: 2024-12-09T13:15:23.327

Modified: 2024-12-09T13:15:23.327

Link: CVE-2023-25454

cve-icon Redhat

No data.