Exploiting Incorrectly Configured Access Control Security Levels
CVE-2023-25067
4.3MEDIUM
What is CVE-2023-25067?
A missing authorization vulnerability exists in the We’re Open! plugin by Noah Hearle, which allows attackers to exploit improperly configured access control security levels. This vulnerability impacts all versions leading up to and including 1.45, possibly enabling unauthorized access to sensitive functionalities and data.
Affected Version(s)
We’re Open! <= 1.45